CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7648 matches found

exploitpack•added 2019/01/07 12:0 a.m.•23 views

LayerBB 1.1.1 - Persistent Cross-Site Scripting

LayerBB 1.1.1 - Persistent Cross-Site Scripting Exploit Title: LayerBB 1.1.1 - Cross-Site Scripting Date: 10/4/2018 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://forum.layerbb.com/downloads.php?view=file&id=26 Version: 1.1.1 Tested on: Ubuntu 18.04 CVE: CVE-2018-17997...

4.3CVSS6.1AI score0.0358EPSS

Exploits5

0day.today•added 2019/01/07 12:0 a.m.•38 views

LayerBB 1.1.1 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: LayerBB 1.1.1 - Cross-Site Scripting Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://forum.layerbb.com/downloads.php?view=file&id=26 Version: 1.1.1 Tested on: Ubuntu 18.04 CVE: CVE-2018-17997 1...

6.4AI score0.0358EPSS

Exploits5

Exploit DB•added 2019/01/07 12:0 a.m.•86 views

MyBB OUGC Awards Plugin 1.8.3 - Persistent Cross-Site Scripting

Exploit Title: MyBB OUGC Awards Plugin v1.8.3 - Cross-Site Scripting Date: 12/31/2018 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=396 Version: 1.8.3 Tested on: Ubuntu 18.04 CVE: CVE-2019-3501 1. Description: OUGC Awards...

4.8CVSS5.1AI score0.02353EPSS

Exploits5

NVD•added 2019/01/03 7:29 p.m.•11 views

CVE-2018-20663

The Reporting Addon aka Reports Addon through 2019-01-02 for CUBA Platform through 6.10.x has Persistent XSS via the "Reports Reports" name field...

5.4CVSS5.3AI score0.00667EPSS

Exploits1References1

OSV•added 2019/01/03 7:29 p.m.•9 views

CVE-2018-20663

The Reporting Addon aka Reports Addon through 2019-01-02 for CUBA Platform through 6.10.x has Persistent XSS via the "Reports Reports" name field...

5.4CVSS5.9AI score

Exploits0References1

Prion•added 2019/01/03 7:29 p.m.•8 views

Cross site scripting

The Reporting Addon aka Reports Addon through 2019-01-02 for CUBA Platform through 6.10.x has Persistent XSS via the "Reports Reports" name field...

3.5CVSS5.3AI score0.00667EPSS

Exploits1References1Affected Software2

Cvelist•added 2019/01/03 6:0 p.m.•14 views

CVE-2018-20663

The Reporting Addon aka Reports Addon through 2019-01-02 for CUBA Platform through 6.10.x has Persistent XSS via the "Reports Reports" name field...

5.4AI score0.00667EPSS

Exploits1References1

CVE•added 2019/01/03 6:0 p.m.•44 views

CVE-2018-20663

The CVE-2018-20663 entry describes a Persistent XSS vulnerability in the CUBA Platform Reporting Addon (aka Reports Addon) affecting versions up to 6.10.x, with the flaw exploitable via the name field under Reports > Reports. Evidence across sources (NVD entry and multiple vulnerability tracke...

5.4CVSS5.2AI score0.00667EPSS

Exploits1References1Affected Software1

NVD•added 2018/12/31 3:29 p.m.•21 views

CVE-2018-19901

No-CMS 1.1.3 is prone to Persistent XSS via the blog/managearticle/index/ "articletitle" parameter...

4.8CVSS4.9AI score0.00559EPSS

Exploits1References1

Prion•added 2018/12/31 3:29 p.m.•10 views

Cross site scripting

No-CMS 1.1.3 is prone to Persistent XSS via the blog/managearticle "keyword" parameter...

3.5CVSS4.8AI score0.00559EPSS

Exploits1References1Affected Software1

Prion•added 2018/12/31 3:29 p.m.•11 views

Cross site scripting

No-CMS 1.1.3 is prone to Persistent XSS via the blog/managearticle/index/ "articletitle" parameter...

3.5CVSS4.8AI score0.00559EPSS

Exploits1References1Affected Software1

OSV•added 2018/12/31 3:29 p.m.•18 views

CVE-2018-19901

No-CMS 1.1.3 is prone to Persistent XSS via the blog/managearticle/index/ "articletitle" parameter...

4.8CVSS5.8AI score0.00559EPSS

Exploits1References1

OSV•added 2018/12/31 3:29 p.m.•18 views

CVE-2018-19902

No-CMS 1.1.3 is prone to Persistent XSS via the blog/managearticle "keyword" parameter...

4.8CVSS5.8AI score0.00559EPSS

Exploits1References1

Cvelist•added 2018/12/31 3:0 p.m.•20 views

CVE-2018-19902

No-CMS 1.1.3 is prone to Persistent XSS via the blog/managearticle "keyword" parameter...

4.9AI score0.00559EPSS

Exploits1References1

CVE•added 2018/12/31 3:0 p.m.•35 views

CVE-2018-19903

This CVE concerns XSLT CMS, a PHP/XML/XSLT-based content management system. The vulnerability is a Persistent XSS flaw exploited through the title field in the create/?action=items.edit&type=Page endpoint, enabling injection of script/HTML. Root cause, per the description, is improper handling/es...

6.1CVSS5.9AI score0.00707EPSS

Exploits1References1Affected Software1

CVE•added 2018/12/31 3:0 p.m.•38 views

CVE-2018-19904

CVE-2018-19904 corresponds to a Persistent XSS in XSLT CMS, exploitable via the create/?action=items.edit&type=Page endpoint in the body field. The vulnerability is documented across multiple sources (NVD entry and related advisories) and is described as XSS affecting the body field, with PoC ind...

6.1CVSS5.9AI score0.00865EPSS

Exploits1References1Affected Software1

CVE•added 2018/12/31 3:0 p.m.•37 views

CVE-2018-19901

CVE-2018-19901 affects No-CMS 1.1.3 and is described as a persistent XSS vulnerability exploitable via the blog/manage_article/index/“article_title” parameter. The available public records identify the vulnerable component/entry point but do not provide exploit code, affected versions beyond 1.1....

4.8CVSS4.8AI score0.00559EPSS

Exploits1References1Affected Software1

CVE•added 2018/12/31 3:0 p.m.•35 views

CVE-2018-19902

Vulnerability summary (CVE-2018-19902): No-CMS 1.1.3 is susceptible to a Persistent XSS attack via the blog/manage_article page, specifically through the keyword parameter. The available records indicate the issue is a stored/reflected-like XSS path focused on this input vector, but do not provid...

4.8CVSS4.8AI score0.00559EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/12/31 3:0 p.m.•22 views

CVE-2018-19901

No-CMS 1.1.3 is prone to Persistent XSS via the blog/managearticle/index/ "articletitle" parameter...

4.9AI score0.00559EPSS

Exploits1References1