CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Hacker One•added 2016/04/28 7:7 p.m.•14 views

LocalTapiola: Possibly big authorization problem in Lähitapiola´s varainhoito

Issue The reporter found a design flaw in a feature where pdf-reports are generated. Pdf-reports were generated using 19-digit random names and the names as well as the reports were persistent and accessible by all authenticated users. Fix Guessing a random 19-digit name was found to be almost...

1.3AI score

Packet Storm•added 2016/04/27 12:0 a.m.•61 views

Trend Micro Email Spoofing

Document Title: =============== Trend Micro Account - Email Spoofing Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1693 Trend Micro ID: 1-1-1035655030 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID VL-ID:...

Packet Storm•added 2016/04/27 12:0 a.m.•26 views

Sophos XG Firewall (SF01V) Cross Site Scripting

Document Title: =============== Sophos XG Firewall SF01V - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1734 ID: 5740075 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID VL-ID:...

Vulnerability Lab•added 2016/04/26 12:0 a.m.•51 views

VoipNow v4.0.1 - (xajax_handler) Persistent Vulnerability

Document Title: =============== VoipNow v4.0.1 - xajaxhandler Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1828 Release Date: ============= 2016-04-26 Vulnerability Laboratory ID VL-ID: ==================================== 182...

Packet Storm•added 2016/04/25 12:0 a.m.•47 views

Totemomail 4.x / 5.x Script Insertion

Document Title: =============== Totemomail v4.x & v5.x - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1769 Release Date: ============= 2016-04-08 Vulnerability Laboratory ID VL-ID:...

Packet Storm•added 2016/04/25 12:0 a.m.•33 views

C And C++ For OS Filter Bypass / Script Insertion

Document Title: =============== C & C++ for OS - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1825 Release Date: ============= 2016-04-14 Vulnerability Laboratory ID VL-ID: ====================================...

0day.today•added 2016/04/25 12:0 a.m.•48 views

Totemomail 4.x / 5.x - Persistent Cross-Site Scripting

Exploit for jsp platform in category web applications Document Title: =============== Totemomail v4.x & v5.x - Filter Bypass & Persistent Vulnerability Product & Service Introduction: =============================== totemomail® Encryption Gateway protects your email communication with customers a...

Vulnerability Lab•added 2016/04/25 12:0 a.m.•106 views

Trend Micro (Account) - Email Spoofing Web Vulnerability

Packet Storm•added 2016/04/25 12:0 a.m.•28 views

Django CMS 3.2.3 Cross Site Scripting

Document Title: =============== Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1820 Release Date: ============= 2016-04-19 Vulnerability Laboratory ID VL-ID: ==================================...

exploitpack•added 2016/04/25 12:0 a.m.•31 views

CC++ Offline Compiler and C For OS - Persistent Cross-Site Scripting

CC++ Offline Compiler and C For OS - Persistent Cross-Site Scripting Document Title: =============== C & C++ for OS - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1825 Release Date: ============= 2016-04-14...

6.8AI score

exploitpack•added 2016/04/25 12:0 a.m.•10 views

Totemomail 4.x5.x - Persistent Cross-Site Scripting

Totemomail 4.x5.x - Persistent Cross-Site Scripting...

2.1AI score

Vulnerability Lab•added 2016/04/25 12:0 a.m.•39 views

VoipNow v4.0.1 - (xajax_handler) Persistent Vulnerability

Document Title: =============== VoipNow v4.0.1 - xajaxhandler Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1828 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID VL-ID: ==================================== 182...

Vulnerability Lab•added 2016/04/25 12:0 a.m.•33 views

Sophos XG Firewall (SF01V) - Persistent Web Vulnerability

Exploit DB•added 2016/04/25 12:0 a.m.•42 views

Totemomail 4.x/5.x - Persistent Cross-Site Scripting

Vulnerability Lab•added 2016/04/24 12:0 a.m.•39 views

Sophos XG Firewall (SF01V) - Persistent Web Vulnerability

Vulnerability Lab•added 2016/04/24 12:0 a.m.•45 views

Trend Micro (Account) - Email Spoofing Web Vulnerability

Hacker One•added 2016/04/19 9:11 p.m.•18 views

New Relic: Stored Cross-Site Scripting via Angular Template Injection

It's possible to inject angular expressions into the account settings of a new relic account. This, combined with an angular sandbox escape allows for persistant cross-site scripting which is executed in the browser of any user visiting the affected page. The execution of which could be used to...

1.5AI score

Vulnerability Lab•added 2016/04/19 12:0 a.m.•36 views

Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability

Vulnerability Lab•added 2016/04/18 12:0 a.m.•30 views

Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability

Document Title: =============== Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1820 Release Date: ============= 2016-04-18 Vulnerability Laboratory ID VL-ID: ==================================...