Lucene search
K

7660 matches found

NVD
NVD
added 2019/10/12 9:15 p.m.16 views

CVE-2019-17532

An issue was discovered on Belkin Wemo Switch 28B WW2.00.11057.PVT-OWRT-SNS devices. They allow remote attackers to cause a denial of service persistent rules-processing outage via a crafted ruleDbBody element in a StoreRules request to the upnp/control/rules1 URI, because database corruption...

7.8CVSS7.5AI score0.01617EPSS
Exploits1References1
Prion
Prion
added 2019/10/11 11:15 a.m.10 views

Default credentials

IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/ with the parameter password is non-persistent in 10.2.0...

4.3CVSS6.2AI score0.00836EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2019/10/11 11:15 a.m.11 views

Design/Logic Flaw

IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: admin/login.html with the parameter username is persistent in 10.2.0...

4.3CVSS6AI score0.00836EPSS
Exploits0References2Affected Software1
Packet Storm
Packet Storm
added 2019/10/11 12:0 a.m.249 views

Intelbras Router WRN150 1.0.18 Cross Site Scripting

Exploit Title: Intelbras Router WRN150 1.0.18 - Persistent Cross-Site Scripting Date: 2019-10-03 Exploit Author: Prof. Joas Antonio Vendor Homepage: https://www.intelbras.com/pt-br/ Software Link: http://en.intelbras.com.br/node/25896 Version: 1.0.18 Tested on: Windows CVE : CVE-2019–17411 PoC 1:...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/10/11 12:0 a.m.13 views

Cross-Site Scripting (XSS) in script src

Client-side scripts are used extensively by modern web applications. They perform from simple functions such as the formatting of text up to full manipulation of client-side data and Operating System interaction. Cross Site Scripting XSS allows clients to inject scripts into a request and have th...

5.6AI score
Exploits0References2
Exploit DB
Exploit DB
added 2019/10/11 12:0 a.m.252 views

Intelbras Router WRN150 1.0.18 - Persistent Cross-Site Scripting

Exploit Title: Intelbras Router WRN150 1.0.18 - Persistent Cross-Site Scripting Date: 2019-10-03 Exploit Author: Prof. Joas Antonio Vendor Homepage: https://www.intelbras.com/pt-br/ Software Link: http://en.intelbras.com.br/node/25896 Version: 1.0.18 Tested on: Windows CVE : CVE-2019–17411 PoC 1:...

7.4AI score
Exploits0
NVD
NVD
added 2019/10/10 2:5 a.m.14 views

CVE-2019-17427

In Redmine before 3.4.11 and 4.0.x before 4.0.4, persistent XSS exists due to textile formatting errors...

6.1CVSS6AI score0.01598EPSS
Exploits1References5
OSV
OSV
added 2019/10/10 2:5 a.m.22 views

CVE-2019-17427

In Redmine before 3.4.11 and 4.0.x before 4.0.4, persistent XSS exists due to textile formatting errors...

6.1CVSS6.2AI score0.01598EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2019/10/10 2:5 a.m.23 views

CVE-2019-17427

In Redmine before 3.4.11 and 4.0.x before 4.0.4, persistent XSS exists due to textile formatting errors...

6.1CVSS6.3AI score0.01598EPSS
Exploits1References3
OSV
OSV
added 2019/10/10 2:5 a.m.1 views

UBUNTU-CVE-2019-17427

In Redmine before 3.4.11 and 4.0.x before 4.0.4, persistent XSS exists due to textile formatting errors...

6.1CVSS5.8AI score0.01598EPSS
Exploits1References4
Penetration Testing Lab
Penetration Testing Lab
added 2019/10/09 9:11 a.m.118 views

Persistence – Screensaver

Screensavers are part of Windows functionality and enable users to put a screen message or a graphic animation after a period of inactivity. This feature of Windows it is known to be abused by threat actors as a method of persistence. This is because screensavers are executable files that have th...

3.6AI score
Exploits0
Packet Storm
Packet Storm
added 2019/09/30 12:0 a.m.134 views

thesystem 1.0 Cross Site Scripting

Exploit Title: thesystem Persistent XSS Author: Anıl Baran Yelken Discovery Date: 2019-09-28 Vendor Homepage: https://github.com/kostasmitroglou/thesystem Software Link: https://github.com/kostasmitroglou/thesystem Tested Version: 1.0 Tested on OS: Windows 10 CVE: N/A Type: Webapps Description:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/09/30 12:0 a.m.14 views

thesystem 1.0 - Cross-Site Scripting

thesystem 1.0 - Cross-Site Scripting Exploit Title: thesystem Persistent XSS Author: Anıl Baran Yelken Discovery Date: 2019-09-28 Vendor Homepage: https://github.com/kostasmitroglou/thesystem Software Link: https://github.com/kostasmitroglou/thesystem Tested Version: 1.0 Tested on OS: Windows 10...

6.8AI score
Exploits0
0day.today
0day.today
added 2019/09/30 12:0 a.m.49 views

InoERP 0.7.2 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: InoERP 0.7.2 - Persistent Cross-Site Scripting Google Dork: None Exploit Author: strider Vendor: http://inoideas.org/ Software Link: https://github.com/inoerp/inoERP Version: 0.7.2 Tested on: Debian 10 Buster x64 / Kali Linux CV...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/09/30 12:0 a.m.200 views

thesystem 1.0 - Cross-Site Scripting

Exploit Title: thesystem Persistent XSS Author: Anıl Baran Yelken Discovery Date: 2019-09-28 Vendor Homepage: https://github.com/kostasmitroglou/thesystem Software Link: https://github.com/kostasmitroglou/thesystem Tested Version: 1.0 Tested on OS: Windows 10 CVE: N/A Type: Webapps Description:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/09/27 12:0 a.m.52 views

WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting

WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Exploit Title: WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/themes/zoner/ Date: 2019-09-24 Exploit Author: m0ze Vendor Homepage: https://fruitfulcode.com/ Software...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2019/09/27 12:0 a.m.24 views

InoERP 0.7.2 - Persistent Cross-Site Scripting

InoERP 0.7.2 - Persistent Cross-Site Scripting Exploit Title: InoERP 0.7.2 - Persistent Cross-Site Scripting Google Dork: None Date: 2019-09-14 Exploit Author: strider Vendor: http://inoideas.org/ Software Link: https://github.com/inoerp/inoERP Version: 0.7.2 Tested on: Debian 10 Buster x64 / Kal...

6.8AI score
Exploits0
WPVulnDB
WPVulnDB
added 2019/09/27 12:0 a.m.15 views

Zoner < 4.2 - Persistent XSS & IDOR

----- Persistent XSS: ----- 'Address' input field on the 'Local information' block is vulnerable so you can use your payload to steal admin cookies or do some redirects etc. ----- IDOR: ----- POST request https://zoner.fruitfulcode.com/wp-admin/admin-ajax.php?action=deletepropertyactid=XXX=YYY...

Exploits0References2Affected Software1
Packet Storm
Packet Storm
added 2019/09/27 12:0 a.m.201 views

thesystem App 1.0 Cross Site Scripting

Exploit Title: thesystem App 1.0 - Persistent Cross-Site Scripting Author: İsmail Güngör Discovery Date: 2019-09-26 Vendor Homepage: https://github.com/kostasmitroglou/thesystem Software Link: https://github.com/kostasmitroglou/thesystem Tested Version: 1.0 Tested on OS: Windows 10 CVE: N/A...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2019/09/27 12:0 a.m.255 views

WordPress Zoner Real Estate Theme 4.1.1 Cross Site Scripting

Exploit Title: WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/themes/zoner/ Date: 2019-09-24 Exploit Author: m0ze Vendor Homepage: https://fruitfulcode.com/ Software Link:...

7.4AI score
Exploits0
Rows per page
Query Builder