343 matches found
VTiger v7.0 CRM - (To) Persistent Email Vulnerability
Document Title: =============== VTiger v7.0 CRM - To Persistent Email Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2227 Release Date: ============= 2020-11-18 Vulnerability Laboratory ID VL-ID: ==================================== 2227...
Grocy Household Management Cross-Site Scripting Vulnerability
Grocy Household Management Grocy is a web-based self-hosted grocery and household management solution for families by individual developers. The platform is an ERP system for households written in PHP. A cross-site scripting vulnerability exists in Grocy Household Management Solution version 2.7....
Froxlor 0.10.16 Cross Site Scripting
Document Title: =============== Froxlor v0.10.16 CP - Customer Persistent Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2241 Release Date: ============= 2020-11-12 Vulnerability Laboratory ID VL-ID: ====================================...
Buddypress v6.2.0 WP Plugin - Persistent Web Vulnerability
Document Title: =============== Buddypress v6.2.0 WP Plugin - Persistent Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2263 Release Date: ============= 2020-11-13 Vulnerability Laboratory ID VL-ID: ===================================...
Froxlor v0.10.16 CP - (Customer) Persistent Vulnerability
Document Title: =============== Froxlor v0.10.16 CP - Customer Persistent Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2241 Release Date: ============= 2020-11-12 Vulnerability Laboratory ID VL-ID: ====================================...
Lindy 42633 Cross-Site Scripting Vulnerability
The Lindy 42633 is a 4-port USB 2.0 Gigabit network server. A persistent cross-site scripting vulnerability exists in Lindy 42633 2.078.000. An attacker can exploit this vulnerability via a specially crafted server name to conduct cross-site scripting attacks...
Tryton 5.4 Cross Site Scripting
Document Title: =============== Tryton v5.4 - Name Persistent Cross Site Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2233 Release Date: ============= 2020-05-12 Vulnerability Laboratory ID VL-ID: ==================================== 22...
Mahara 19.10.2 Cross Site Scripting
Document Title: =============== Mahara v19.10.2 CMS - Persistent Cross Site Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2217 Release Date: ============= 2020-04-21 Vulnerability Laboratory ID VL-ID: ====================================...
CVE-2019-20357
A Persistent Arbitrary Code Execution vulnerability exists in the Trend Micro Security 2020 v160 and 2019 v15 consumer familiy of products which could potentially allow an attacker the ability to create a malicious program to escalate privileges and attain persistence on a vulnerable system...
GitLab EE Cross-Site Scripting Vulnerability
GitLab is an open source application developed using Ruby on Rails that implements a self-hosted Git project repository that can be accessed through a web interface for public and private projects.GitLab EE is the GitLab Enterprise Edition and GitLab CE is the GitLab Community Edition. A persiste...
Cross site scripting
Cobham Satcom Sailor 800 and 900 devices contained persistent XSS, which required administrative access to exploit. The vulnerability was exploitable by acquiring a copy of the device's configuration file, inserting an XSS payload into a relevant field e.g., Satellite name, and then restoring the...
CVE-2019-9226
An issue was discovered in baigo CMS 2.1.1. There is a persistent XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the optbaseBGSITENAME parameter to the bgconsole/index.php?m=opt&c=request URI...
Barracuda Cloud 3.0.020 - Contents Persistent Vulnerability
Document Title: =============== Barracuda Cloud 3.0.020 - Contents Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=782 Release Date: ============= 2018-07-24 Vulnerability Laboratory ID VL-ID: ====================================...
PayPal (Notify) - Filter Bypass & Persistent Vulnerability
Document Title: =============== PayPal Notify - Filter Bypass & Persistent Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1425 Video: https://www.youtube.com/watch?v=J2upim5MrV0 Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1640 Release Dat...
Salesforce Careermount - Bypass & Persistent Vulnerability
Document Title: =============== Salesforce Careermount - Bypass & Persistent Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1969 Release Date: ============= 2018-07-05 Vulnerability Laboratory ID VL-ID: ===================================...
Magento Products T1 - Bypass & Persistent Vulnerability
Document Title: =============== Magento Products T1 - Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1919 Release Date: ============= 2018-06-19 Vulnerability Laboratory ID VL-ID: ==================================== 19...
Adobe CreativeCloud - (Events ) Persistent Vulnerability
Document Title: =============== Adobe CreativeCloud - Events Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1840 Release Date: ============= 2018-06-18 Vulnerability Laboratory ID VL-ID: ==================================== 1840...
Magento MarketPlace T1 - Bypass & Persistent Vulnerability
Document Title: =============== Magento MarketPlace T1 - Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1902 Release Date: ============= 2018-06-17 Vulnerability Laboratory ID VL-ID: ====================================...
Cross site scripting
An issue was discovered in the wunderfarm WF Cookie Consent plugin 1.1.3 for WordPress. A persistent cross-site scripting vulnerability has been identified in the web interface of the plugin that allows the execution of arbitrary HTML/script code to be executed in a victim's web browser via a pag...
Monstra cms 3.0.4 - Persitent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Monstra cms 3.0.4 - Persitent Cross-Site Scripting Exploit Author: Wenming Jiang Vendor Homepage: https://github.com/monstra-cms/monstra Software Link: https://github.com/monstra-cms/monstra Version: 3.0.4 Tested on: php 5.6,...