Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7647 matches found

Debian CVE
Debian CVEadded 2018/03/21 8:0 p.m.21 views

CVE-2017-0924

Removed by vendor...

6.1CVSS6.4AI score0.00771EPSS
Exploits0
Exploit DB
Exploit DBadded 2018/03/20 12:0 a.m.46 views

Coship RT3052 Wireless Router - Persistent Cross-Site Scripting

Exploit Title: Coship RT3052 Wireless Router - Persistent Cross Site Scripting XSS Date: 2018-03-18 Exploit Author: Sayan Chatterjee Vendor Homepage: http://en.coship.com/ Category: Hardware Wifi Router Version: 4.0.0.48 Tested on: Windows 10 CVE: CVE-2018-8772 Proof of Concept =================...

6.1CVSS6.4AI score0.01849EPSS
Exploits3
The Hacker News
The Hacker Newsadded 2018/03/13 4:37 p.m.61 views

13 Critical Flaws Discovered in AMD Ryzen and EPYC Processors

Security researchers claimed to have discovered 13 critical Spectre/Meltdown-like vulnerabilities throughout AMD's Ryzen and EPYC lines of processors that could allow attackers to access sensitive data, install persistent malware inside the chip, and gain full access to the compromised systems. A...

8AI score
Exploits0
OSV
OSVadded 2018/03/12 3:29 p.m.25 views

CVE-2016-9589

Undertow in Red Hat wildfly before version 11.0.0.Beta1 is vulnerable to a resource exhaustion resulting in a denial of service. Undertow keeps a cache of seen HTTP headers in persistent connections. It was found that this cache can easily exploited to fill memory with garbage, up to "max-headers...

7.5CVSS7.7AI score
Exploits0References13
Cvelist
Cvelistadded 2018/03/12 3:0 p.m.42 views

CVE-2016-9589

Undertow in Red Hat wildfly before version 11.0.0.Beta1 is vulnerable to a resource exhaustion resulting in a denial of service. Undertow keeps a cache of seen HTTP headers in persistent connections. It was found that this cache can easily exploited to fill memory with garbage, up to "max-headers...

7.3AI score0.03133EPSS
Exploits0References13
exploitpack
exploitpackadded 2018/03/02 12:0 a.m.51 views

D-Link DIR-600M Wireless - Cross-Site Scripting

D-Link DIR-600M Wireless - Cross-Site Scripting Exploit Title: D-Link DIR-600M Wireless - Persistent Cross Site Scripting Date: 11.02.2018 Vendor Homepage: http://www.dlink.co.in Hardware Link: http://www.dlink.co.in/products/?pid=DIR-600M Category: Hardware Exploit Author: Prasenjit Kanti Paul...

3.5CVSS5.4AI score0.02267EPSS
Exploits5
Packet Storm
Packet Stormadded 2018/03/02 12:0 a.m.50 views

D-Link DIR-600M Wireless Cross Site Scripting

Exploit Title: D-Link DIR-600M Wireless - Persistent Cross Site Scripting Date: 11.02.2018 Vendor Homepage: http://www.dlink.co.in Hardware Link: http://www.dlink.co.in/products/?pid=DIR-600M Category: Hardware Exploit Author: Prasenjit Kanti Paul Web: http://hack2rule.wordpress.com/ Hardware...

5.6AI score0.02267EPSS
Exploits5
Exploit DB
Exploit DBadded 2018/03/02 12:0 a.m.73 views

D-Link DIR-600M Wireless - Cross-Site Scripting

Exploit Title: D-Link DIR-600M Wireless - Persistent Cross Site Scripting Date: 11.02.2018 Vendor Homepage: http://www.dlink.co.in Hardware Link: http://www.dlink.co.in/products/?pid=DIR-600M Category: Hardware Exploit Author: Prasenjit Kanti Paul Web: http://hack2rule.wordpress.com/ Hardware...

5.4CVSS5.5AI score0.02267EPSS
Exploits5
Vulnerability Lab
Vulnerability Labadded 2018/03/02 12:0 a.m.57 views

Sandoba CP:Shop CMS v2016.1 - Multiple XSS Vulnerabilities

Document Title: =============== Sandoba CP:Shop CMS v2016.1 - Multiple XSS Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2122 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-13001 CVE-ID: ======= CVE-2018-13001 Release Date:...

6.1CVSS0.5AI score0.00813EPSS
Exploits3
Packet Storm
Packet Stormadded 2018/02/27 12:0 a.m.20 views

MyBB My Arcade 1.3 Cross Site Scripting

Exploit Title: MyBB My Arcade Plugin v1.3 - Persistent XSS Date: 2/21/2018 Author: 0xB9 Contact: luxorforums.com/User-0xB9 or 0xB9atprotonmail.com Software Link: https://community.mybb.com/mods.php?action=view&pid=411 Version: 1.3 Tested on: Ubuntu 17.10 1. Description: The My Arcade plugin adds ...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2018/02/27 12:0 a.m.14 views

MyBB My Arcade Plugin 1.3 - Cross-Site Scripting

MyBB My Arcade Plugin 1.3 - Cross-Site Scripting Exploit Title: MyBB My Arcade Plugin v1.3 - Persistent XSS Date: 2/21/2018 Author: 0xB9 Contact: luxorforums.com/User-0xB9 or 0xB9atprotonmail.com Software Link: https://community.mybb.com/mods.php?action=view&pid=411 Version: 1.3 Tested on: Ubuntu...

6.7AI score
Exploits0
0day.today
0day.todayadded 2018/02/27 12:0 a.m.27 views

MyBB My Arcade Plugin 1.3 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: MyBB My Arcade Plugin v1.3 - Persistent XSS Date: 2/21/2018 Author: 0xB9 Contact: luxorforums.com/User-0xB9 or 0xB9atprotonmail.com Software Link: https://community.mybb.com/mods.php?action=view&pid=411 Version: 1.3 Tested on:...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2018/02/27 12:0 a.m.21 views

MyBB My Arcade Plugin 1.3 - Cross-Site Scripting

Exploit Title: MyBB My Arcade Plugin v1.3 - Persistent XSS Date: 2/21/2018 Author: 0xB9 Contact: luxorforums.com/User-0xB9 or 0xB9atprotonmail.com Software Link: https://community.mybb.com/mods.php?action=view&pid=411 Version: 1.3 Tested on: Ubuntu 17.10 1. Description: The My Arcade plugin adds ...

7.4AI score
Exploits0
Prion
Prionadded 2018/02/24 2:29 a.m.10 views

Cross site scripting

DISPUTED mojoPortal through 2.6.0.0 is prone to multiple persistent cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. The 'Title' and 'Subtitle' fields of the 'Blog' page are vulnerable. NOTE: The software maintainer disputes this as a vulnerability because th...

3.5CVSS4.9AI score0.00734EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2018/02/24 2:0 a.m.13 views

CVE-2018-7447

mojoPortal through 2.6.0.0 is prone to multiple persistent cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. The 'Title' and 'Subtitle' fields of the 'Blog' page are vulnerable. NOTE: The software maintainer disputes this as a vulnerability because the fields...

5.8AI score0.00734EPSS
Exploits0References2
Cvelist
Cvelistadded 2018/02/24 2:0 a.m.14 views

CVE-2018-7447

mojoPortal through 2.6.0.0 is prone to multiple persistent cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. The 'Title' and 'Subtitle' fields of the 'Blog' page are vulnerable. NOTE: The software maintainer disputes this as a vulnerability because the fields...

5.1AI score0.00734EPSS
Exploits0References2
CVE
CVEadded 2018/02/24 2:0 a.m.43 views

CVE-2018-7447

mojoPortal up to version 2.6.0.0 is affected by persistent cross-site scripting in the Blog page’s Title and Subtitle fields due to inadequate input sanitization. The vulnerability arises from failing to filter user input, enabling XSS in affected pages. The maintainer disputes this as a vulnerab...

4.8CVSS5AI score0.00734EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessusadded 2018/02/22 12:0 a.m.27 views

FreeBSD : GitLab -- multiple vulnerabilities (86291013-16e6-11e8-ae9f-d43d7e971a1b)

GitLab reports : SnippetFinder information disclosure The GitLab SnippetFinder component contained an information disclosure which allowed access to snippets restricted to Only team members or configured as disabled. The issue is now resolved in the latest version. LDAP API authorization issue An...

5.5AI score
Exploits0References2
NVD
NVDadded 2018/02/21 4:29 p.m.21 views

CVE-2018-7261

There are multiple Persistent XSS vulnerabilities in Radiant CMS 1.1.4. They affect Personal Preferences Name and Username and Configuration Site Title, Dev Site Domain, Page Parts, and Page Fields...

5.4CVSS5.5AI score0.00622EPSS
Exploits2References2
Prion
Prionadded 2018/02/21 4:29 p.m.18 views

Cross site scripting

There are multiple Persistent XSS vulnerabilities in Radiant CMS 1.1.4. They affect Personal Preferences Name and Username and Configuration Site Title, Dev Site Domain, Page Parts, and Page Fields...

3.5CVSS5.4AI score0.00622EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder