CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7656 matches found

Exploit DB•added 2020/12/02 12:0 a.m.•388 views

ChurchCRM 4.2.1 - Persistent Cross Site Scripting (XSS)

Exploit Title: ChurchCRM 4.2.1- Persistent Cross Site ScriptingXSS Date: 2020- 10- 29 Exploit Author: Mufaddal Masalawala Vendor Homepage: https://churchcrm.io/ Software Link: https://github.com/ChurchCRM/CRM Version: 4.2.1 Tested on: Kali Linux 2020.3 Proof Of Concept: ChurchCRM application allo...

7.4AI score

Exploits0

Packet Storm•added 2020/12/02 12:0 a.m.•388 views

Bakeshop Online Ordering System 1.0 Cross Site Scripting

Exploit Title: Bakeshop Online Ordering System 1.0 - 'Owner' Persistent Cross-site scripting Date: 26-11-2020 Exploit Author: Parshwa Bhavsar Vendor Homepage: https://www.sourcecodester.com/ Software Link:...

7.4AI score

Exploits0

Packet Storm•added 2020/12/02 12:0 a.m.•398 views

NewsLister Cross Site Scripting

Exploit Title: NewsLister - Authenticated Persistent Cross-Site Scripting Date: 2020-11-27 Exploit Author: Emre Aslan Vendor Homepage: https://www.netartmedia.net/newslister.html Tested on: Windows & XAMPP == PoC HTTP Request == GET /admin/index.php?page=add HTTP/1.1 Host: 127.0.0.1:8080...

7.4AI score

Exploits0

Exploit DB•added 2020/12/01 12:0 a.m.•443 views

Multi Restaurant Table Reservation System 1.0 - Multiple Persistent XSS

Exploit Title: Multi Restaurant Table Reservation System 1.0 - Multiple Persistent XSS Date: 01-11-2020 Exploit Author: yunaranyancat Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/sites/default/files/download/janobe/tablereservation.zip Version: 1.0...

7.4AI score

Exploits0

Exploit DB•added 2020/12/01 12:0 a.m.•478 views

Pandora FMS 7.0 NG 749 - Multiple Persistent Cross-Site Scripting Vulnerabilities

Exploit Title: Pandora FMS 7.0 NG 749 - Multiple Persistent Cross-Site Scripting Vulnerabilities Date: 11-14-2020 Exploit Author: Matthew Aberegg Vendor Homepage: https://pandorafms.com/ Software Link: https://pandorafms.com/community/get-started/ Version: Pandora FMS 7.0 NG 749 Tested on: Ubuntu...

7.4AI score

Exploits0

Packet Storm•added 2020/11/27 12:0 a.m.•668 views

Heroic Knowledge Base 3.0.1 Cross Site Scripting

Exploit Title : Heroic Knowledge Base Plugin Methode POST POST /wp-admin/admin-ajax.php HTTP/1.1 Host: site.com User-Agent: Mozilla/5.0 Macintosh; Intel Mac OS X 10.15; rv:56.0 Gecko/20100101 Firefox/56.0 Waterfox/56.3 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate...

7.4AI score

Exploits0

Exploit DB•added 2020/11/27 12:0 a.m.•842 views

Best Support System 3.0.4 - 'ticket_body' Persistent XSS (Authenticated)

Exploit Title: Best Support System 3.0.4 - 'ticketbody' Persistent XSS Authenticated Google Dork: "Powered By Best Support System" Date: 2020-08-23 Exploit Author: Ex.Mi https://ex-mi.ru Vendor: Appsbd https://appsbd.com Software Version: 3.0.4 Software Link:...

5.4CVSS5.6AI score0.01853EPSS

Exploits2

Packet Storm•added 2020/11/27 12:0 a.m.•604 views

Best Support System 3.0.4 Cross Site Scripting

3.5CVSS5.6AI score0.01853EPSS

Exploits2

Exploit DB•added 2020/11/25 12:0 a.m.•1066 views

WonderCMS 3.1.3 - 'page' Persistent Cross-Site Scripting

Exploit Title: WonderCMS 3.1.3 - 'page' Persistent Cross-Site Scripting Date: 20-11-2020 Exploit Author: Mayur Parmar Vendor Homepage: https://www.wondercms.com/ Version: 3.1.3 Tested on: PopOS Stored Cross-site scriptingXSS: Stored attacks are those where the injected script is permanently store...

7.4AI score

Exploits0

Vulnerability Lab•added 2020/11/24 12:0 a.m.•43 views

VestaCP v0.9.8-26 - (period) Cross Site Web Vulnerability

Document Title: =============== VestaCP v0.9.8-26 - period Cross Site Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2239 Release Date: ============= 2020-11-24 Vulnerability Laboratory ID VL-ID: ====================================...

0.1AI score

Exploits0

Exploit DB•added 2020/11/23 12:0 a.m.•919 views

VTiger v7.0 CRM - 'To' Persistent XSS

Exploit Title: VTiger v7.0 CRM - 'To' Persistent XSS Date: 2020-11-18 Exploit Vulnerability-Lab Vendor Homepage: https://www.vtiger.com/open-source-crm/download-open-source/ Software Link: https://sourceforge.net/projects/vtigercrm/files/ Version: v7.0 Document Title: =============== VTiger v7.0...

7.4AI score

Exploits0

Packet Storm•added 2020/11/20 12:0 a.m.•882 views

Vtiger CRM 7.0 Cross Site Scripting

Document Title: =============== VTiger v7.0 CRM - To Persistent Email Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2227 Release Date: ============= 2020-11-18 Vulnerability Laboratory ID VL-ID: ==================================== 2227...

Exploits0

Packet Storm•added 2020/11/19 12:0 a.m.•764 views

Nagios Log Server 2.1.7 Cross Site Scripting

Exploit Title: Nagios Log Server 2.1.7 - 'snapshotname' Persistent Cross-Site Scripting Date: 31.08.2020 Exploit Author: Emre ÖVÜNÇ Vendor Homepage: https://www.nagios.com/ Software Link: https://www.nagios.com/products/nagios-log-server/ Version: 2.1.7 Tested on: Linux/ISO Link:...

7.4AI score

Exploits0

Exploit DB•added 2020/11/19 12:0 a.m.•765 views

Nagios Log Server 2.1.7 - Persistent Cross-Site Scripting

7.4AI score

Exploits0

Exploit DB•added 2020/11/18 12:0 a.m.•1218 views

Wordpress Plugin WPForms 1.6.3.1 - Persistent Cross Site Scripting (Authenticated)

Exploit Title : Wordpress Plugin WPForms 1.6.3.1 - Persistent Cross Site Scripting Authenticated Exploit Author : ZwX Exploit Date : 2020-10-23 Vendor Homepage : https://wpforms.com/ Download Plugin : https://downloads.wordpress.org/plugin/wpforms-lite.1.6.3.1.zip + Description Vulnerability:...

7.4AI score

Exploits0

Vulnerability Lab•added 2020/11/18 12:0 a.m.•49 views

VTiger v7.0 CRM - (To) Persistent Email Vulnerability

7.4AI score

Exploits0

OSV•added 2020/11/17 2:15 a.m.•4 views

CVE-2020-25833

Persistent cross-Site Scripting vulnerability on Micro Focus IDOL product, affecting all version prior to version 12.7. The vulnerability could be exploited to perform Persistent XSS attack...

4.8CVSS5.8AI score0.00511EPSS

Exploits0References1

NVD•added 2020/11/17 2:15 a.m.•24 views

CVE-2020-25833

Persistent cross-Site Scripting vulnerability on Micro Focus IDOL product, affecting all version prior to version 12.7. The vulnerability could be exploited to perform Persistent XSS attack...

4.8CVSS4.9AI score0.00511EPSS

Exploits0References1

Cvelist•added 2020/11/17 1:20 a.m.•22 views

CVE-2020-25833

Persistent cross-Site Scripting vulnerability on Micro Focus IDOL product, affecting all version prior to version 12.7. The vulnerability could be exploited to perform Persistent XSS attack...

4.9AI score0.00511EPSS

Exploits0References1

CVE•added 2020/11/17 1:20 a.m.•66 views

CVE-2020-25833

CVE-2020-25833 concerns a persistent cross-site scripting vulnerability in Micro Focus IDOL, affecting all versions prior to 12.7. The connected documents confirm the vulnerability is a Persistent XSS issue in IDOL and describe the impact as enabling Persistent XSS attacks. The sources do not pro...

4.8CVSS4.8AI score0.00511EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by