Lucene search
K

7657 matches found

Exploit DB
Exploit DB
added 2020/04/15 12:0 a.m.231 views

SeedDMS 5.1.18 - Persistent Cross-Site Scripting

Title: SeedDMS 5.1.18 - Persistent Cross-Site Scripting Author: Vulnerability Laboratory Date: 2020-04-15 Vendor: https://www.seeddms.org Software Link: https://www.seeddms.org/index.php?id=7 CVE: N/A Document Title: =============== SeedDMS v5.1.18 - Multiple Persistent Web Vulnerabilities...

7.4AI score
Exploits0
NVD
NVD
added 2020/04/14 8:15 p.m.23 views

CVE-2020-7575

A vulnerability has been identified in Climatix POL908 BACnet/IP module All versions, Climatix POL909 AWM module All versions V11.32. A persistent cross-site scripting XSS vulnerability exists in the web server access log page of the affected devices that could allow an attacker to inject arbitra...

6.1CVSS6AI score0.00645EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/04/14 3:27 p.m.64 views

Persistent Cross-Site scripting in Nexus Repository Manager

Sonatype Nexus Repository before 3.21.2 allows XSS...

4.8CVSS2.4AI score0.00918EPSS
Exploits0References4Affected Software1
Vulnerability Lab
Vulnerability Lab
added 2020/04/14 12:0 a.m.65 views

SeedDMS v5.1.18 - Multiple Persistent Web Vulnerabilities

Document Title: =============== SeedDMS v5.1.18 - Multiple Persistent Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2209 Release Date: ============= 2020-04-14 Vulnerability Laboratory ID VL-ID: ====================================...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/04/14 12:0 a.m.23 views

WSO2 3.1.0 - Persistent Cross-Site Scripting Vulnerability

Exploit for java platform in category web applications Title: WSO2 3.1.0 - Persistent Cross-Site Scripting Author: raki ben hamouda Vendor: https://apim.docs.wso2.com Softwrare link: https://apim.docs.wso2.com/en/latest/ CVE: N/A Advisory:...

7.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/04/14 12:0 a.m.5 views

The vulnerability of Xen hypervisors arises from synchronization errors when using shared resources, allowing a malicious actor to cause service failures or increase their privileges.

The vulnerability of Xen hypervisors arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to cause service failures or increase their privileges by adding a device with persistent communication capabilities...

7.8CVSS6.8AI score0.00259EPSS
Exploits0References7Affected Software10
Vulnerability Lab
Vulnerability Lab
added 2020/04/13 12:0 a.m.47 views

Macs Framework v1.14f CMS - Multiple Web Vulnerabilities

Document Title: =============== Macs Framework v1.14f CMS - Multiple Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2206 Release Date: ============= 2020-04-13 Vulnerability Laboratory ID VL-ID: ====================================...

7.4AI score
Exploits0
NVD
NVD
added 2020/04/09 1:15 p.m.13 views

CVE-2020-11556

An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There are multiple persistent stored and reflected XSS vulnerabilities...

5.4CVSS5.4AI score0.00557EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/04/09 12:31 p.m.15 views

CVE-2020-11556

An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There are multiple persistent stored and reflected XSS vulnerabilities...

5.4AI score0.00557EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2020/04/09 10:33 a.m.18 views

CVE-2019-1003003

An improper authorization vulnerability exists in Jenkins 2.158 and earlier, LTS 2.150.1 and earlier in core/src/main/java/hudson/security/TokenBasedRememberMeServices2.java that allows attackers with Overall/RunScripts permission to craft Remember Me cookies that would never expire, allowing e.g...

7.2CVSS6AI score0.01545EPSS
Exploits0References4
Prion
Prion
added 2020/04/08 1:15 a.m.13 views

Cross site scripting

A non-persistent XSS cross-site scripting vulnerability exists in eWON Flexy and Cosy all firmware versions prior to 14.1s0. An attacker could send a specially crafted URL to initiate a password change for the device. The target must introduce the credentials to the gateway before the attack can ...

4.3CVSS6AI score0.00687EPSS
Exploits0References1Affected Software2
Vulnerability Lab
Vulnerability Lab
added 2020/04/08 12:0 a.m.43 views

DedeCMS v7.5 SP2 - Multiple Persistent Web Vulnerabilities

Document Title: =============== DedeCMS v7.5 SP2 - Multiple Persistent Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2195 Release Date: ============= 2020-04-08 Vulnerability Laboratory ID VL-ID: ===================================...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2020/04/07 12:0 a.m.236 views

DedeCMS v7.5 SP2 - Multiple Cross Site Web Vulnerabilities

Document Title: =============== DedeCMS v7.5 SP2 - Multiple Cross Site Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2194 Release Date: ============= 2020-04-07 Vulnerability Laboratory ID VL-ID: ===================================...

7.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2020/04/06 4:0 p.m.32 views

Turning collaboration and customer engagement up with a strong identity approach

In these challenging times, it’s even more apparent that modern companies are managing a blended workforce that encompasses not only their full-time staff and customers but also their contractors, consultants, subsidiaries, suppliers, partners, and soon-to-be customers. Balancing friction-less...

0.6AI score
Exploits0
0day.today
0day.today
added 2020/04/06 12:0 a.m.53 views

pfSense 2.4.4-P3 - (User Manager) Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: pfSense 2.4.4-P3 - 'User Manager' Persistent Cross-Site Scripting Exploit Author: Matthew Aberegg Vendor Homepage: https://www.pfsense.org Version: PfSense 2.4.4-P3 Tested on: FreeBSD 11.2-RELEASE-p10 CVE : CVE-2020-11457...

5.9AI score0.09282EPSS
Exploits3
Packet Storm
Packet Storm
added 2020/04/06 12:0 a.m.181 views

Vanguard 2.1 Cross Site Scripting

Exploit Title: Vanguard 2.1 Multi XSS Vunlerabilities Google Dork:N/A Date: 2020-04-04 Exploit Author: @ThelastVvV Vendor Homepage: https://codecanyon.net/item/vanguard-marketplace-digital-products-php/20287975 Version: 2.1 Tested on: 5.4.0-4parrot1-amd64...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2020/04/06 12:0 a.m.157 views

LimeSurvey 4.1.11 Cross Site Scripting

Exploit Title: LimeSurvey 4.1.11 - 'Survey Groups' Persistent Cross-Site Scripting Date: 2020-04-02 Exploit Author: Matthew Aberegg, Michael Burkey Vendor Homepage: https://www.limesurvey.org Version: LimeSurvey 4.1.11+200316 Tested on: Ubuntu 18.04.4 CVE : CVE-2020-11456 Vulnerability Details...

4.3CVSS0.70841EPSS
Exploits4
0day.today
0day.today
added 2020/04/06 12:0 a.m.45 views

LimeSurvey 4.1.11 - (Survey Groups) Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: LimeSurvey 4.1.11 - 'Survey Groups' Persistent Cross-Site Scripting Exploit Author: Matthew Aberegg, Michael Burkey Vendor Homepage: https://www.limesurvey.org Version: LimeSurvey 4.1.11+200316 Tested on: Ubuntu 18.04.4 CVE :...

4.3CVSS5.8AI score0.70841EPSS
Exploits4
Packet Storm
Packet Storm
added 2020/04/06 12:0 a.m.159 views

pfSense 2.4.4-P3 User Manager Cross Site Scripting

Exploit Title: pfSense 2.4.4-P3 - 'User Manager' Persistent Cross-Site Scripting Date: 2020-04-02 Exploit Author: Matthew Aberegg Vendor Homepage: https://www.pfsense.org Version: PfSense 2.4.4-P3 Tested on: FreeBSD 11.2-RELEASE-p10 CVE : CVE-2020-11457 Vulnerability Details Description : A...

3.5CVSS5.6AI score0.09282EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/04/06 12:0 a.m.254 views

pfSense 2.4.4-P3 - 'User Manager' Persistent Cross-Site Scripting

Exploit Title: pfSense 2.4.4-P3 - 'User Manager' Persistent Cross-Site Scripting Date: 2020-04-02 Exploit Author: Matthew Aberegg Vendor Homepage: https://www.pfsense.org Version: PfSense 2.4.4-P3 Tested on: FreeBSD 11.2-RELEASE-p10 CVE : CVE-2020-11457 Vulnerability Details Description : A...

5.4CVSS5.6AI score0.09282EPSS
Exploits3
Rows per page
Query Builder