Lucene search
+L

70 matches found

cvelist
cvelist
added 2023/12/11 12:0 a.m.25 views

CVE-2023-49488

A cross-site scripting XSS vulnerability in Openfiler ESA v2.99.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the nic parameter...

6AI score0.00446EPSS
Exploits1References1
nvd
nvd
added 2020/02/07 10:15 p.m.19 views

CVE-2011-1086

Cross-site scripting XSS vulnerability in admin/system.html in Openfiler 2.3 allows remote attackers to inject arbitrary web script or HTML via the device parameter...

6.1CVSS6.1AI score0.01666EPSS
Exploits1References3
cvelist
cvelist
added 2020/02/07 9:6 p.m.20 views

CVE-2011-1086

Cross-site scripting XSS vulnerability in admin/system.html in Openfiler 2.3 allows remote attackers to inject arbitrary web script or HTML via the device parameter...

6.1AI score0.01666EPSS
Exploits1References3
cve
cve
added 2020/02/07 9:6 p.m.130 views

CVE-2011-1086

CVE-2011-1086 is an XSS vulnerability in Openfiler 2.3, affecting the admin/system.html page and exploitable via the device parameter to inject arbitrary script/HTML. The connected documents corroborate the issue across sources (NVD, Red Hat, CVE records, CNVD, etc.). The available materials do n...

6.1CVSS6AI score0.01666EPSS
Exploits1References3Affected Software1
cnvd
cnvd
added 2020/02/07 12:0 a.m.3 views

Openfiler Cross-Site Scripting Vulnerability

Openfiler is an open source network storage solution. A cross-site scripting vulnerability exists in admin / system.html in Openfiler version 2.3, which can be exploited by remote attackers to inject arbitrary Web script or HTML with the help of the 'device' parameter...

6.1CVSS6.1AI score0.01666EPSS
Exploits1References1
circl
circl
added 2018/05/29 3:50 p.m.9 views

CVE-2012-10040

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/openfilernetworkcardexec.rb 2025-10-23 21:12:56+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

9.4CVSS5.7AI score0.02414EPSS
Exploits0References1
seebug
seebug
added 2014/10/10 12:0 a.m.14 views

OpenFiler 2.99.1 - CSRF Vulnerability

No description provided by source. !-- Exploit Title: DoS via CSRF in openfiler Exploit author: Dolev Farhi @dolevff Date 07/05/2014 Vendor homepage: http://www.openfiler.com Affected Software version: 2.99.1 Alerted vendor: 7.5.14 CVE: N/A Software Description ===================== Openfiler is ...

7.1AI score
Exploits0
nvd
nvd
added 2014/09/30 4:55 p.m.21 views

CVE-2014-7190

Multiple cross-site request forgery CSRF vulnerabilities in Openfiler 2.99.1 allow remote attackers to hijack the authentication of administrators for requests that 1 shutdown or 2 reboot the server via a request to admin/systemshutdown.html...

6.8CVSS7.2AI score0.02268EPSS
Exploits2References3
prion
prion
added 2014/09/30 4:55 p.m.13 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in Openfiler 2.99.1 allow remote attackers to hijack the authentication of administrators for requests that 1 shutdown or 2 reboot the server via a request to admin/systemshutdown.html...

6.8CVSS7.7AI score0.02268EPSS
Exploits2References3Affected Software1
cve
cve
added 2014/09/30 4:0 p.m.43 views

CVE-2014-7190

Openfiler 2.99.1 is affected by multiple CSRF vulnerabilities that allow remote attackers to hijack administrator sessions and trigger shutdown or reboot via a request to admin/system_shutdown.html. The underlying issue is CSRF in the admin interface that permits state-changing actions without pr...

6.8CVSS7.4AI score0.02268EPSS
Exploits2References3Affected Software1
cvelist
cvelist
added 2014/09/30 4:0 p.m.27 views

CVE-2014-7190

Multiple cross-site request forgery CSRF vulnerabilities in Openfiler 2.99.1 allow remote attackers to hijack the authentication of administrators for requests that 1 shutdown or 2 reboot the server via a request to admin/systemshutdown.html...

7.2AI score0.02268EPSS
Exploits2References3
exploitpack
exploitpack
added 2014/09/29 12:0 a.m.19 views

OpenFiler 2.99.1 - Cross-Site Request Forgery

OpenFiler 2.99.1 - Cross-Site Request Forgery DoS...

Exploits0
zdt
zdt
added 2014/09/29 12:0 a.m.26 views

OpenFiler 2.99.1 - CSRF Vulnerability

Exploit for php platform in category web applications DoS 0day.today 2018-03-28...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2014/09/29 12:0 a.m.29 views

OpenFiler 2.99.1 - Cross-Site Request Forgery

DoS...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2014/09/27 12:0 a.m.38 views

Openfiler 2.99.1 Denial Of Service

Exploit author: @dolevff Vendor homepage: http://www.openfiler.com Affected Software version: 2.99.1 latest Alerted vendor: 7.5.14 CVE-2014-7190 Software Description ===================== Openfiler is a network storage operating system. With the features we built into Openfiler, you can take...

6.8CVSS6.8AI score0.02268EPSS
Exploits2
seebug
seebug
added 2014/07/01 12:0 a.m.14 views

OpenFiler 2.99.1 - Multiple persistent XSS Vulnerabilities

No description provided by source. Exploit Title: Multiple persistent XSS in Openfiler Exploit author: Dolev Farhi @f1nhack Date 07/05/2014 Vendor homepage: http://www.openfiler.com Affected Software version: 2.99.1 Alerted vendor: 7.5.14 Software Description ===================== Openfiler is a...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.15 views

OpenFiler 2.99.1 - Arbitrary Code Execution

No description provided by source. Exploit Title: Arbitrary Code Execution in Openfiler Exploit author: Dolev Farhi @f1nhack Date 07/05/2014 Vendor homepage: http://www.openfiler.com Affected Software version: 2.99.1 Alerted vendor: 7.5.14 Software Description ===================== Openfiler is a...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.21 views

Openfiler 2.x - NetworkCard Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

7.1AI score
Exploits0
nvd
nvd
added 2014/06/18 2:55 p.m.15 views

CVE-2014-4309

Multiple cross-site scripting XSS vulnerabilities in Openfiler 2.99 allow remote attackers to inject arbitrary web script or HTML via the 1 TinkerAjax parameter to uptime.html, or remote authenticated users to inject arbitrary web script or HTML via the 2 MaxInstances, 3 PassivePorts, 4 Port, 5...

4.3CVSS5.5AI score0.00984EPSS
Exploits1References1
prion
prion
added 2014/06/18 2:55 p.m.11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Openfiler 2.99 allow remote attackers to inject arbitrary web script or HTML via the 1 TinkerAjax parameter to uptime.html, or remote authenticated users to inject arbitrary web script or HTML via the 2 MaxInstances, 3 PassivePorts, 4 Port, 5...

4.3CVSS5.7AI score0.00984EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder