Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7638 matches found

0day.today
0day.todayadded 2014/03/04 12:0 a.m.68 views

SpagoBI 4.0 - Persistent XSS Vulnerability

Exploit for php platform in category web applications 1. Vulnerability Information CVE reference: CVE-2013-6232 CVSS v2 Base Score: 4 CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N Component/s: SpagoBI Class: Input Manipulation 2. Introduction SpagoBI1 is an Open Source Business Intelligence suite,...

7.1AI score0.03625EPSS
Exploits7
Packet Storm
Packet Stormadded 2014/03/03 12:0 a.m.41 views

Joomla 3.2.2 Cross Site Scripting

============================================================== Title ...| Persistent pre-auth XSS in Joomla Version .| Joomla 3.2.2 Date ....| 3.03.2014 Found ...| HauntIT Blog Home ....| http://www.joomla.org ==============================================================...

0.1AI score
Exploits0
exploitpack
exploitpackadded 2014/03/03 12:0 a.m.42 views

SpagoBI 4.0 - Persistent HTML Script Insertion

SpagoBI 4.0 - Persistent HTML Script Insertion 01. Advisory Information Title: Persistent HTML Script Insertion permits offsite-bound forms Date published: 2014-03-01 Date of last update: 2014-03-01 Vendors contacted: Engineering Group Discovered by: Christian Catalano Severity: Medium 02...

4.3CVSS6.4AI score0.03196EPSS
Exploits7
Tenable Nessus
Tenable Nessusadded 2014/03/03 12:0 a.m.27 views

Lexmark Printer Configuration Persistent XSS

The version of the remote Lexmark printer is potentially affected by a cross-site scripting vulnerability. An input validation error exists related to the 'General Settings' configuration page and the 'Location' and 'Contact Name' parameters that could allow persistent cross-site scripting attack...

3.5CVSS5.4AI score0.01713EPSS
Exploits0References2
Packet Storm
Packet Stormadded 2014/03/02 12:0 a.m.48 views

SpagoBI 4.0 HTML Injection

Advisory Information Title: Persistent HTML Script Insertion permits offsite-bound forms Date published: 2014-03-01 Date of last update: 2014-03-01 Vendors contacted: Engineering Group Discovered by: Christian Catalano Severity: Medium 02. Vulnerability Information CVE reference: CVE-2013-6233...

4.3CVSS6.5AI score0.03196EPSS
Exploits7
Packet Storm
Packet Stormadded 2014/03/02 12:0 a.m.62 views

SpagoBI 4.0 Stored Cross Site Scripting

Advisory Information Title: Persistent Cross-Site Scripting XSS in SpagoBI Date published: 2014-03-01 Date of last update: 2014-03-01 Vendors contacted: Engineering Group Discovered by: Christian Catalano Severity: High 02. Vulnerability Information CVE reference: CVE-2013-6232 CVSS v2 Base...

3.5CVSS6.5AI score0.03625EPSS
Exploits7
Exploit DB
Exploit DBadded 2014/03/01 12:0 a.m.43 views

Oracle Demantra 12.2.1 - Persistent Cross-Site Scripting

Details: The TaskSender area is vulnerable to a stored cross-site scripting vulnerability. Impact: An attacker could exploit this flaw to get active HTML or script code executed in an authenticated user’s browser. Cross-site Scripting may be used to perform attacks such as session hijacking by...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2014/02/28 12:0 a.m.55 views

Microsoft Office 365 Outlook Filter Bypass

Document Title: =============== Microsoft Office 365 Outlook - Filter Bypass & Persistent Editor Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=811 Microsoft Security Response Center MSRC ID: 14095 Release Date: ============= 2014-02-28...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Labadded 2014/02/28 12:0 a.m.38 views

Microsoft Office 365 Outlook - Persistent Vulnerability

Document Title: =============== Microsoft Office 365 Outlook - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=811 Microsoft Security Response Center MSRC ID: 14095 Release Date: ============= 2014-02-28 Vulnerability Laboratory ...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2014/02/28 12:0 a.m.23 views

EPESI CRM 1.5.5 Cross Site Scripting

============================================================== Title ...| EPESI CRM vulnerable to persistent XSS Version .| epesi-1.5.5-20140113.zip Date ....| 27.02.2014 Found ...| HauntIT Blog Home ....| http://epe.si/download ==============================================================...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2014/02/28 12:0 a.m.21 views

doorGets 6.0 Cross Site Scripting

============================================================== Title ...| doorGets 6.0 Multiple vulnerabilities Version .| doorGets 6.0 Date ....| 27.02.2014 Found ...| HauntIT Blog Home ....| http://sourceforge.net ==============================================================...

0.2AI score
Exploits0
securityvulns
securityvulnsadded 2014/02/28 12:0 a.m.78 views

Barracuda Networks Bug Bounty #35 - Persistent Web Vulnerability

Document Title: =============== Barracuda Networks Bug Bounty 35 - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1101 Barracuda Networks Security ID BNSEC: BNSEC-2361 Release Date: ============= 2014-02-21 Vulnerability...

7.8AI score
Exploits0
securityvulns
securityvulnsadded 2014/02/28 12:0 a.m.47 views

Barracuda Networks Firewall Bug Bounty #32 - Filter Bypass & Persistent Web Vulnerabilities

Document Title: =============== Barracuda Networks Firewall Bug Bounty 32 - Filter Bypass & Persistent Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1069 Barracuda Networks Security ID BNSEC: BNSEC-2069 Release Date: =============...

7.6AI score
Exploits0
securityvulns
securityvulnsadded 2014/02/28 12:0 a.m.50 views

Barracuda Networks Bug Bounty #31 Firewall - Persistent Access Policy Vulnerability

Document Title: =============== Barracuda Networks Bug Bounty 31 Firewall - Persistent Access Policy Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1070 Barracuda Networks Security ID BNSEC: BNSEC-2068 Release Date: ============= 2014-02-2...

0.2AI score
Exploits0
securityvulns
securityvulnsadded 2014/02/28 12:0 a.m.99 views

Barracuda Bug Bounty #36 Firewall - Client Side Exception Handling Web Vulnerability

Document Title: =============== Barracuda Bug Bounty 36 Firewall - Client Side Exception Handling Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1102 Barracuda Networks Security ID BNSEC: BNSEC-2398...

0.1AI score
Exploits0
Vulnerability Lab
Vulnerability Labadded 2014/02/28 12:0 a.m.13 views

Microsoft Office 365 Outlook - Persistent Vulnerability

Document Title: =============== Microsoft Office 365 Outlook - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=811 Microsoft Security Response Center MSRC ID: 14095 Release Date: ============= 2014-02-28 Vulnerability Laboratory ...

0.1AI score
Exploits0
CERT
CERTadded 2014/02/28 12:0 a.m.42 views

CMS Made Simple contains multiple cross-site scripting vulnerabilities

Overview CMS Made Simple contains multiple cross-site scripting vulnerabilities Description CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' - CVE-2014-0334The files: cmsmadesimple/admin/addgroup.php on line 107 contains a post-authentication reflected XS...

3.5CVSS5.5AI score0.0152EPSS
Exploits3References1
Packet Storm
Packet Stormadded 2014/02/27 12:0 a.m.19 views

PHP Calendar 2.0.1 XSS / Information Disclosure

============================================================== Title ...| PHP Calendar Multiple vulnerabilities Version .| php-calendar-2.0.1.zip Date ....| 27.02.2014 Found ...| HauntIT Blog Home ....| http://sourceforge.net ============================================================== + As gue...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2014/02/27 12:0 a.m.29 views

Barracuda Networks Backup Appliance Cross Site Scripting

Document Title: =============== Barracuda Networks Backup Appliance Application - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=784 BARRACUDA NETWORK SECURITY ID: BNSEC-885 Release Date: ============= 2014-02-26 Vulnerabili...

0.4AI score
Exploits0
Packet Storm
Packet Stormadded 2014/02/27 12:0 a.m.15 views

Open-School Community Edition 2.2 Cross Site Scripting

============================================================== Title ...| Open-School Community Edition 2.2 Version .| osv2.2-CE.zip Date ....| 23.02.2014 Found ...| HauntIT Blog Home ....| http://sourceforge.net ============================================================== + From admin user:...

7.4AI score
Exploits0
Rows per page
Query Builder