Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7649 matches found

Prion
Prionadded 2019/11/18 4:15 p.m.65 views

Cross site scripting

A persistent cross-site scripting XSS vulnerability in Octopus Server 3.4.0 through 2019.10.5 allows remote authenticated attackers to inject arbitrary web script or HTML...

3.5CVSS5.1AI score0.00615EPSS
Exploits0References1Affected Software1
0day.today
0day.todayadded 2019/11/18 12:0 a.m.74 views

TemaTres 3.0 - (value) Persistent Cross-site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: TemaTres 3.0 - 'value' Persistent Cross-site Scripting Author: Pablo Santiago Date: 2019-11-14 Vendor Homepage: https://www.vocabularyserver.com/ Source:...

7.1AI score0.0094EPSS
Exploits5
Exploit DB
Exploit DBadded 2019/11/18 12:0 a.m.167 views

TemaTres 3.0 - 'value' Persistent Cross-site Scripting

Exploit Title: TemaTres 3.0 - 'value' Persistent Cross-site Scripting Author: Pablo Santiago Date: 2019-11-14 Vendor Homepage: https://www.vocabularyserver.com/ Source: https://sourceforge.net/projects/tematres/files/TemaTres%203.0/tematres3.0.zip/download Version: 3.0 CVE : 2019–14343 Reference:...

5.4CVSS5.8AI score0.0094EPSS
Exploits5
0day.today
0day.todayadded 2019/11/12 12:0 a.m.110 views

Prima Access Control 2.3.35 - (HwName) Persistent Cross-Site Scripting Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Prima Access Control 2.3.35 - 'HwName' Persistent Cross-Site Scripting Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link:...

7.1AI score0.08256EPSS
Exploits5
exploitpack
exploitpackadded 2019/11/12 12:0 a.m.45 views

Prima Access Control 2.3.35 - HwName Persistent Cross-Site Scripting

Prima Access Control 2.3.35 - HwName Persistent Cross-Site Scripting Exploit Title: Prima Access Control 2.3.35 - 'HwName' Persistent Cross-Site Scripting Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link:...

3.5CVSS8.8AI score0.08256EPSS
Exploits5
Exploit DB
Exploit DBadded 2019/11/12 12:0 a.m.123 views

Prima Access Control 2.3.35 - 'HwName' Persistent Cross-Site Scripting

Exploit Title: Prima Access Control 2.3.35 - 'HwName' Persistent Cross-Site Scripting Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version:...

9CVSS7AI score0.08256EPSS
Exploits5
0day.today
0day.todayadded 2019/11/06 12:0 a.m.62 views

html5_snmp 1.11 - (Remark) Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: html5snmp 1.11 - 'Remark' Persistent Cross-Site Scripting Exploit Author: Cakes Vendor Homepage: https://github.com/lolypop55/html5snmp Software Link: https://github.com/lolypop55/html5snmp.git Version: 1.11 Tested on: CentOS 7...

7.4AI score
Exploits0
0day.today
0day.todayadded 2019/11/06 12:0 a.m.60 views

thrsrossi Millhouse-Project 1.414 - (content) Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: thrsrossi Millhouse-Project 1.414 - 'content' Persistent Cross-Site Scripting Exploit Author: Cakes Vendor Homepage: https://github.com/thrsrossi/Millhouse-Project Software Link: https://github.com/thrsrossi/Millhouse-Project.gi...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2019/11/05 12:0 a.m.214 views

html5_snmp 1.11 Cross Site Scripting

Exploit Title: html5snmp 1.11 - 'Remark' Persistent Cross-Site Scripting Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/lolypop55/html5snmp Software Link: https://github.com/lolypop55/html5snmp.git Version: 1.11 Tested on: CentOS 7 CVE: N/A PoC POST...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2019/11/05 12:0 a.m.27 views

thrsrossi Millhouse-Project 1.414 - content Persistent Cross-Site Scripting

thrsrossi Millhouse-Project 1.414 - content Persistent Cross-Site Scripting Exploit Title: thrsrossi Millhouse-Project 1.414 - 'content' Persistent Cross-Site Scripting Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/thrsrossi/Millhouse-Project Software Link:...

6.8AI score
Exploits0
Packet Storm
Packet Stormadded 2019/11/05 12:0 a.m.154 views

thrsrossi Millhouse-Project 1.414 Cross Site Scripting

Exploit Title: thrsrossi Millhouse-Project 1.414 - 'content' Persistent Cross-Site Scripting Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/thrsrossi/Millhouse-Project Software Link: https://github.com/thrsrossi/Millhouse-Project.git Version: 1.414 Tested on: CentOS 7...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2019/11/05 12:0 a.m.15 views

html5_snmp 1.11 - Remark Persistent Cross-Site Scripting

html5snmp 1.11 - Remark Persistent Cross-Site Scripting Exploit Title: html5snmp 1.11 - 'Remark' Persistent Cross-Site Scripting Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/lolypop55/html5snmp Software Link: https://github.com/lolypop55/html5snmp.git Version: 1.11...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2019/11/05 12:0 a.m.193 views

thrsrossi Millhouse-Project 1.414 - 'content' Persistent Cross-Site Scripting

Exploit Title: thrsrossi Millhouse-Project 1.414 - 'content' Persistent Cross-Site Scripting Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/thrsrossi/Millhouse-Project Software Link: https://github.com/thrsrossi/Millhouse-Project.git Version: 1.414 Tested on: CentOS 7...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2019/11/05 12:0 a.m.235 views

html5_snmp 1.11 - 'Remark' Persistent Cross-Site Scripting

Exploit Title: html5snmp 1.11 - 'Remark' Persistent Cross-Site Scripting Date: 2019-11-01 Exploit Author: Cakes Vendor Homepage: https://github.com/lolypop55/html5snmp Software Link: https://github.com/lolypop55/html5snmp.git Version: 1.11 Tested on: CentOS 7 CVE: N/A PoC POST...

7.4AI score
Exploits0
ThreatPost
ThreatPostadded 2019/10/30 12:58 p.m.53 views

Android Malware Plaguing 45K Devices Remains a Mystery

Researchers are on the hunt for the infection vector behind a mysterious mobile malware that has infected over 45,000 Android devices in the past six months. Researchers said they have detected a surge in detections of the malware, dubbed Xhelper, which can hide itself from users, download...

0.3AI score
Exploits0References7
Kitploit
Kitploitadded 2019/10/26 8:49 p.m.138 views

Tails 4.0 - Live System to Preserve Your Privacy and Anonymity

Tails is a live system that aims to preserve your privacy and anonymity. It helps you to use the Internet anonymously and circumvent censorship almost anywhere you go and on any computer but leaving no trace unless you ask it to explicitly. It is a complete operating system designed to be used fr...

7.5AI score
Exploits0References1
CNVD
CNVDadded 2019/10/25 12:0 a.m.3 views

Memory leak vulnerability in multiple Huawei products (CNVD-2019-38501)

The Huawei AR1200, among others, is an enterprise router from Huawei, a Chinese company. A memory leak vulnerability exists in multiple Huawei products. A remote attacker could exploit the vulnerability by sending a persistent message to cause a service exception...

6.5CVSS6.8AI score0.00757EPSS
Exploits0References1
Prion
Prionadded 2019/10/17 5:15 p.m.14 views

Cross site scripting

In NCH Express Accounts Accounting v7.02, persistent cross site scripting XSS exists in Invoices/Sales Orders/Items/Customers/Quotes input field. An authenticated unprivileged user can add/modify the Invoices/Sales Orders/Items/Customers/Quotes fields parameter to inject arbitrary JavaScript...

3.5CVSS5.2AI score0.00579EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2019/10/17 4:55 p.m.17 views

CVE-2019-16330

In NCH Express Accounts Accounting v7.02, persistent cross site scripting XSS exists in Invoices/Sales Orders/Items/Customers/Quotes input field. An authenticated unprivileged user can add/modify the Invoices/Sales Orders/Items/Customers/Quotes fields parameter to inject arbitrary JavaScript...

5.3AI score0.00579EPSS
Exploits1References1
CVE
CVEadded 2019/10/17 4:55 p.m.46 views

CVE-2019-16330

CVE-2019-16330 affects NCH Express Accounts Accounting v7.02, with a persistent XSS in Invoices/Sales Orders/Items/Customers/Quotes input fields. An authenticated unprivileged user can modify these fields to inject arbitrary JavaScript, enabling client-side script execution. Connected documents c...

5.4CVSS5.2AI score0.00579EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder