16 matches found
CVE-2022-37720
Orchardproject Orchard CMS 1.10.3 is vulnerable to Cross Site Scripting XSS. When a low privileged user such as an author or publisher, injects a crafted html and javascript payload in a blog post, leading to full admin account takeover or privilege escalation when the malicious blog post is load...
EUVD-2020-21954
Malware in sbrugna...
EUVD-2022-40334
Malicious code in bioql PyPI...
EUVD-2022-52221
Malicious code in bioql PyPI...
CVE-2022-37720
Orchardproject Orchard CMS 1.10.3 is vulnerable to Cross Site Scripting XSS. When a low privileged user such as an author or publisher, injects a crafted html and javascript payload in a blog post, leading to full admin account takeover or privilege escalation when the malicious blog post is load...
CVE-2022-37720
Orchardproject Orchard CMS 1.10.3 is vulnerable to Cross Site Scripting XSS. When a low privileged user such as an author or publisher, injects a crafted html and javascript payload in a blog post, leading to full admin account takeover or privilege escalation when the malicious blog post is load...
CVE-2022-37720
Orchardproject Orchard CMS 1.10.3 is vulnerable to Cross Site Scripting XSS. When a low privileged user such as an author or publisher, injects a crafted html and javascript payload in a blog post, leading to full admin account takeover or privilege escalation when the malicious blog post is load...
CVE-2020-29593
CVE-2020-29593 affects Orchard CMS before 1.10. The vulnerability arises in the Media Settings: Allowed File Types list, where an attacker can insert an XSS payload that executes when a user uploads a disallowed file type, causing an error message to display. The issue is confirmed across multipl...
Matteo Piovanelli Orchard 代码问题漏洞
Matteo Piovanelli Orchard is a Matteo Piovanelli open source application. A free, open source, community-centered content management system built on the ASP.NET MVC platform. A security vulnerability exists in Orchard versions prior to 1.10, which stems from a vulnerability that allows an attacke...
Orchard Core RC1 - Persistent Cross-Site Scripting Vulnerability
Exploit for asp platform in category web applications Exploit Title: Orchard Core RC1 - Persistent Cross-Site Scripting Google Dork: "Orchardcms" Exploit Author: SunCSR Sun Cyber Security Research Vendor Homepage: http://www.orchardcore.net/ Software Link: https://github.com/OrchardCMS/OrchardCor...
Orchard Core RC1 Cross Site Scripting
Exploit Title: Orchard Core RC1 - Persistent Cross-Site Scripting Google Dork: "Orchardcms" Date: 2020-05-07 Exploit Author: SunCSR Sun Cyber Security Research Vendor Homepage: http://www.orchardcore.net/ Software Link: https://github.com/OrchardCMS/OrchardCore Version: RC1 Tested on: Windows CVE...
Orchard CMS 1.7.3/1.8.2/1.9.0 - Persistent Cross-Site Scripting
----------------- Background ----------------- Orchard is a free, open source, community-focused content management system written in ASP.NET platform using the ASP.NET MVC framework. Its vision is to create shared components for building ASP.NET applications and extensions, and specific...
Orchard CMS 1.7.31.8.21.9.0 - Persistent Cross-Site Scripting
Orchard CMS 1.7.31.8.21.9.0 - Persistent Cross-Site Scripting ----------------- Background ----------------- Orchard is a free, open source, community-focused content management system written in ASP.NET platform using the ASP.NET MVC framework. Its vision is to create shared components for...
Orchard CMS 1.9.0 / 1.8.2 / 1.7.3 Cross Site Scripting
----------------- Background ----------------- Orchard is a free, open source, community-focused content management system written in ASP.NET platform using the ASP.NET MVC framework. Its vision is to create shared components for building ASP.NET applications and extensions, and specific...
Orchard vulnerable to cross-site scripting
Overview Orchard is a content management system CMS. Orchard contains a cross-site scripting vulnerability. Tatsuya Sekiguchi of Hitachi Systems, Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An...
Orchard 1.3.9 - ReturnUrl Open Redirection
Orchard 1.3.9 - ReturnUrl Open Redirection source: https://www.securityfocus.com/bid/51260/info Orchard is prone to a URI-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing attacks; other attacks are possible...