Lucene search
K

36 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-20511

Malware in sbrugna...

5.4CVSS5.5AI score0.01643EPSS
Exploits5References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-20545

Malware in sbrugna...

6.1CVSS6.3AI score0.00699EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-8414

Malware in sbrugna...

5.4CVSS5.5AI score0.00653EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-20584

Malware in sbrugna...

8.8CVSS8.8AI score0.01312EPSS
Exploits4References4
Packet Storm
Packet Storm
added 2020/04/29 12:0 a.m.94 views

Open-AudIT Professional 3.3.1 Remote Code Execution

Exploit Title: Open-AudIT Professional 3.3.1 - Remote Code Execution Date: 2020-04-22 Exploit Author: Askar CVE: CVE-2020-12078 Vendor Homepage: https://opmantek.com/ Version: v3.3.1 Tested on: Ubuntu 18.04 / PHP 7.2.24 !/usr/bin/python3 import requests import sys import warnings import random...

0.5AI score0.09999EPSS
Exploits3
CNVD
CNVD
added 2018/09/20 12:0 a.m.3 views

Open-AudIT Professional Cross-Site Scripting Vulnerability (CNVD-2018-19866)

Open-AudIT is a network discovery and auditing program. The program intelligently scans networks and network devices and provides status reports. A cross-site scripting vulnerability exists in Orgs Page in Open-AudIT Professional Edition version 2.2.7. A remote attacker can exploit this...

5.4CVSS5.1AI score0.00653EPSS
Exploits1References1
CNVD
CNVD
added 2018/06/15 12:0 a.m.2 views

Open-AudIT Professional Cross-Site Scripting Vulnerability

Open-AudIT Professional is a network discovery and auditing program. The program intelligently scans networks and network devices and provides status reports. A cross-site scripting vulnerability exists in Open-AudIT Professional version 2.1.1. A remote attacker can exploit this vulnerability to...

5.4CVSS5.1AI score0.01179EPSS
Exploits5References1
0day.today
0day.today
added 2018/05/12 12:0 a.m.49 views

Open-AudIT Professional - 2.1.1 - Cross-Site Scripting Vulnerability

Exploit for windows platform in category web applications Exploit Title: Open-AudIT Professional 2.1.1 – Multiple Cross-Site Scripting Exploit Author: Tejesh Kolisetty Vendor Homepage: https://opmantek.com/ Software Link: https://opmantek.com/network-tools-download/ Affected Version: 2.1.1...

5.6AI score0.01179EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/05/11 12:0 a.m.39 views

Open-AudIT Professional - 2.1.1 - Cross-Site Scripting

Exploit Title: Open-AudIT Professional 2.1.1 – Multiple Cross-Site Scripting Exploit Author: Tejesh Kolisetty Vendor Homepage: https://opmantek.com/ Software Link: https://opmantek.com/network-tools-download/ Affected Version: 2.1.1 Category: WebApps Tested on: Win7 Professional CVE : CVE-2018-91...

5.4CVSS5.5AI score0.01179EPSS
Exploits5
ATTACKERKB
ATTACKERKB
added 2018/04/12 3:29 p.m.1 views

CVE-2018-9155

Cross-site scripting XSS vulnerability in Open-AudIT Professional 2.1.1 allows remote attackers to inject arbitrary web script or HTML via a crafted name of a component, as demonstrated by the Admin-Logs section with a logs?logs.type= URI and the Manage-Attributes section via the "Name display"...

5.4CVSS5.7AI score0.01179EPSS
Exploits5References3
Prion
Prion
added 2018/04/12 3:29 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in Open-AudIT Professional 2.1.1 allows remote attackers to inject arbitrary web script or HTML via a crafted name of a component, as demonstrated by the Admin-Logs section with a logs?logs.type= URI and the Manage-Attributes section via the "Name display"...

3.5CVSS5.3AI score0.01179EPSS
Exploits5References2Affected Software1
OSV
OSV
added 2018/04/12 3:29 p.m.4 views

CVE-2018-9155

Cross-site scripting XSS vulnerability in Open-AudIT Professional 2.1.1 allows remote attackers to inject arbitrary web script or HTML via a crafted name of a component, as demonstrated by the Admin-Logs section with a logs?logs.type= URI and the Manage-Attributes section via the "Name display"...

5.4CVSS5.9AI score0.01179EPSS
Exploits5References2
NVD
NVD
added 2018/04/12 3:29 p.m.17 views

CVE-2018-9155

Cross-site scripting XSS vulnerability in Open-AudIT Professional 2.1.1 allows remote attackers to inject arbitrary web script or HTML via a crafted name of a component, as demonstrated by the Admin-Logs section with a logs?logs.type= URI and the Manage-Attributes section via the "Name display"...

5.4CVSS5.3AI score0.01179EPSS
Exploits5References2
Cvelist
Cvelist
added 2018/04/12 3:0 p.m.17 views

CVE-2018-9155

Cross-site scripting XSS vulnerability in Open-AudIT Professional 2.1.1 allows remote attackers to inject arbitrary web script or HTML via a crafted name of a component, as demonstrated by the Admin-Logs section with a logs?logs.type= URI and the Manage-Attributes section via the "Name display"...

5.3AI score0.01179EPSS
Exploits5References2
CVE
CVE
added 2018/04/12 3:0 p.m.52 views

CVE-2018-9155

CVE-2018-9155 is an XSS in Open-AudIT Professional 2.1.1. A remote attacker can inject arbitrary script/HTML by a crafted Name (display) in attributes or by crafted log names in Admin->Logs, enabling scripted content in the UI. Connected sources confirm Open-AudIT Professional 2.1.1 as affecte...

5.4CVSS5.3AI score0.01179EPSS
Exploits5References2Affected Software1
CNVD
CNVD
added 2018/03/28 12:0 a.m.3 views

Open-AudIT Professional Cross-Site Scripting Vulnerability

Open-AudIT Professional is a network discovery and auditing program. The program intelligently scans networks and network devices and provides status reports. A cross-site scripting vulnerability exists in Open-AudIT Professional version 2.1. A remote attacker can exploit this vulnerability to...

5.4CVSS6.5AI score0.01643EPSS
Exploits5References1
CNVD
CNVD
added 2018/03/27 12:0 a.m.2 views

Open-AudIT Professional Open Redirect Vulnerability

Open-AudIT Professional is a network discovery and auditing program. The program intelligently scans networks and network devices and provides status reports. A security vulnerability exists in Open-AudIT Professional version 2.1. An attacker can exploit the vulnerability by sending the...

6.1CVSS6.8AI score0.00699EPSS
Exploits1References1
NVD
NVD
added 2018/03/26 5:29 p.m.11 views

CVE-2018-8937

An issue was discovered in Open-AudIT Professional 2.1. It is possible to inject a malicious payload in the redirecturl parameter to the /login URI to trigger an open redirect. A "data:text/html;base64," payload can be used with JavaScript code...

6.1CVSS6.2AI score0.00699EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/03/26 5:0 p.m.17 views

CVE-2018-8937

An issue was discovered in Open-AudIT Professional 2.1. It is possible to inject a malicious payload in the redirecturl parameter to the /login URI to trigger an open redirect. A "data:text/html;base64," payload can be used with JavaScript code...

6.2AI score0.00699EPSS
Exploits1References1
CVE
CVE
added 2018/03/26 5:0 p.m.42 views

CVE-2018-8937

Open-AudIT Professional 2.1 contains an open redirect vulnerability triggered by injecting a malicious payload into the redirect_url parameter of the /login URI. The issue, described across multiple sources (including CVE-2018-8937 and CNVD/CVE records), can be exploited using a data:text/html;ba...

6.1CVSS6.1AI score0.00699EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder