Lucene search
K

6 matches found

0day.today
0day.today
added 2018/06/16 12:0 a.m.73 views

OEcms 3.1 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Title: OEcms 3.1 - Cross-Site Scripting Author: Felipe "Renzi" Gabriel Software: OEcms v3.1 CVE: CVE-2018-12095 Technical Details & Description: A Reflected Cross-Site Scripting web vulnerability has been discovered in the "OEcms v3.1"...

0.2AI score0.05103EPSS
Exploits5
exploitpack
exploitpack
added 2018/06/15 12:0 a.m.33 views

OEcms 3.1 - Cross-Site Scripting

OEcms 3.1 - Cross-Site Scripting Title: OEcms 3.1 - Cross-Site Scripting Author: Felipe "Renzi" Gabriel Date: 2018-06-15 Software: OEcms v3.1 CVE: CVE-2018-12095 Technical Details & Description: A Reflected Cross-Site Scripting web vulnerability has been discovered in the "OEcms v3.1"...

3.5CVSS0.1AI score0.05103EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/06/15 12:0 a.m.73 views

OEcms 3.1 - Cross-Site Scripting

Title: OEcms 3.1 - Cross-Site Scripting Author: Felipe "Renzi" Gabriel Date: 2018-06-15 Software: OEcms v3.1 CVE: CVE-2018-12095 Technical Details & Description: A Reflected Cross-Site Scripting web vulnerability has been discovered in the "OEcms v3.1" web-application. The vulnerability is locate...

5.4CVSS5.5AI score0.05103EPSS
Exploits5
NVD
NVD
added 2018/06/11 11:29 a.m.28 views

CVE-2018-12095

A Reflected Cross-Site Scripting web vulnerability has been discovered in the OEcms v3.1 web-application. The vulnerability is located in the mod parameter of info.php...

5.4CVSS5.4AI score0.05103EPSS
Exploits5References2
Cvelist
Cvelist
added 2018/06/11 11:0 a.m.27 views

CVE-2018-12095

A Reflected Cross-Site Scripting web vulnerability has been discovered in the OEcms v3.1 web-application. The vulnerability is located in the mod parameter of info.php...

5.4AI score0.05103EPSS
Exploits5References2
CVE
CVE
added 2018/06/11 11:0 a.m.97 views

CVE-2018-12095

OEcms v3.1 is vulnerable to a reflected Cross-Site Scripting flaw in the mod parameter of info.php. The issue arises from improper input handling in the info.php?mod= parameter, enabling attackers to inject arbitrary JavaScript and potentially hijack sessions or access sensitive data. The connect...

5.4CVSS5.3AI score0.05103EPSS
Exploits5References2Affected Software1
Rows per page
Query Builder