Lucene search
K

7660 matches found

Packet Storm
Packet Storm
added 2019/09/27 12:0 a.m.121 views

InoERP 0.7.2 Cross Site Scripting

Exploit Title: InoERP 0.7.2 - Persistent Cross-Site Scripting Google Dork: None Date: 2019-09-14 Exploit Author: strider Vendor: http://inoideas.org/ Software Link: https://github.com/inoerp/inoERP Version: 0.7.2 Tested on: Debian 10 Buster x64 / Kali Linux CVE : None...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2019/09/27 12:0 a.m.256 views

WordPress Zoner Real Estate Theme 4.1.1 Cross Site Scripting

Exploit Title: WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/themes/zoner/ Date: 2019-09-24 Exploit Author: m0ze Vendor Homepage: https://fruitfulcode.com/ Software Link:...

7.4AI score
Exploits0
wpexploit
wpexploit
added 2019/09/27 12:0 a.m.26 views

Zoner < 4.2 - Persistent XSS & IDOR

----- Persistent XSS: ----- 'Address' input field on the 'Local information' block is vulnerable so you can use your payload to steal admin cookies or do some redirects etc. ----- IDOR: ----- POST request https://zoner.fruitfulcode.com/wp-admin/admin-ajax.php?action=deletepropertyactid=XXX=YYY...

7.3AI score
Exploits0References2
Exploit DB
Exploit DB
added 2019/09/27 12:0 a.m.386 views

thesystem App 1.0 - Persistent Cross-Site Scripting

Exploit Title: thesystem App 1.0 - Persistent Cross-Site Scripting Author: İsmail Güngör Discovery Date: 2019-09-26 Vendor Homepage: https://github.com/kostasmitroglou/thesystem Software Link: https://github.com/kostasmitroglou/thesystem Tested Version: 1.0 Tested on OS: Windows 10 CVE: N/A...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/09/27 12:0 a.m.272 views

WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting

Exploit Title: WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/themes/zoner/ Date: 2019-09-24 Exploit Author: m0ze Vendor Homepage: https://fruitfulcode.com/ Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/09/27 12:0 a.m.242 views

InoERP 0.7.2 - Persistent Cross-Site Scripting

Exploit Title: InoERP 0.7.2 - Persistent Cross-Site Scripting Google Dork: None Date: 2019-09-14 Exploit Author: strider Vendor: http://inoideas.org/ Software Link: https://github.com/inoerp/inoERP Version: 0.7.2 Tested on: Debian 10 Buster x64 / Kali Linux CVE : None...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/09/26 12:0 a.m.16 views

Duplicate-Post 3.2.3 - Persistent Cross-Site Scripting

Duplicate-Post 3.2.3 - Persistent Cross-Site Scripting Exploit Title: Duplicate-Post 3.2.3 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-06-11 Exploit Author: Unk9vvN Vendor Homepage: https://duplicate-post.lopo.it/ Software Link: https://wordpress.org/plugins/duplicate-post/...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2019/09/26 12:0 a.m.26 views

all-in-one-seo-pack 3.2.7 - Persistent Cross-Site Scripting

all-in-one-seo-pack 3.2.7 - Persistent Cross-Site Scripting Exploit Title: all-in-one-seo-pack 3.2.7 - Persistent Cross-Site Scripting Google Dork: inurl:"\wp-content\plugins\all-in-one-seo-pack" Date: 2019-06-13 Exploit Author: Unk9vvN Vendor Homepage:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2019/09/26 12:0 a.m.229 views

Duplicate-Post 3.2.3 Cross Site Scripting

Exploit Title: Duplicate-Post 3.2.3 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-06-11 Exploit Author: Unk9vvN Vendor Homepage: https://duplicate-post.lopo.it/ Software Link: https://wordpress.org/plugins/duplicate-post/ Version: 3.2.3 Tested on: Kali Linux CVE: N/A Description...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2019/09/26 12:0 a.m.158 views

all-in-one-seo-pack 3.2.7 Cross Site Scripting

Exploit Title: all-in-one-seo-pack 3.2.7 - Persistent Cross-Site Scripting Google Dork: inurl:"\wp-content\plugins\all-in-one-seo-pack" Date: 2019-06-13 Exploit Author: Unk9vvN Vendor Homepage: https://semperplugins.com/all-in-one-seo-pack-pro-version Software Link:...

7.4AI score
Exploits0
0day.today
0day.today
added 2019/09/26 12:0 a.m.30 views

WordPress Duplicate-Post 3.2.3 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Duplicate-Post 3.2.3 - Persistent Cross-Site Scripting Exploit Author: Unk9vvN Vendor Homepage: https://duplicate-post.lopo.it/ Software Link: https://wordpress.org/plugins/duplicate-post/ Version: 3.2.3 Tested on: Kali Linux CV...

Exploits0
Packet Storm
Packet Storm
added 2019/09/25 12:0 a.m.158 views

WP Server Log Viewer 1.0 Cross Site Scripting

Exploit Title: WP Server Log Viewer 1.0 - 'logfile' Persistent Cross-Site Scripting Date: 2019-09-10 Exploit Author: strider Software Link: https://github.com/anttiviljami/wp-server-log-viewer Version: 1.0 Tested on: Debian 10 Buster x64 / Kali Linux CVE : None...

0.3AI score
Exploits0
0day.today
0day.today
added 2019/09/25 12:0 a.m.77 views

Microsoft SharePoint 2013 SP1 - (DestinationFolder) Persistant Cross-Site Scripting Vulnerability

Exploit for asp platform in category web applications Exploit Title: Microsoft SharePoint 2013 SP1 - 'DestinationFolder' Persistent Cross-Site Scripting Author: Davide Cioccia Vendor Homepage: https://www.microsoft.com Software Link:...

3.5CVSS6.3AI score0.02794EPSS
Exploits5
exploitpack
exploitpack
added 2019/09/25 12:0 a.m.17 views

WP Server Log Viewer 1.0 - logfile Persistent Cross-Site Scripting

WP Server Log Viewer 1.0 - logfile Persistent Cross-Site Scripting Exploit Title: WP Server Log Viewer 1.0 - 'logfile' Persistent Cross-Site Scripting Date: 2019-09-10 Exploit Author: strider Software Link: https://github.com/anttiviljami/wp-server-log-viewer Version: 1.0 Tested on: Debian 10...

Exploits0
Exploit DB
Exploit DB
added 2019/09/25 12:0 a.m.155 views

WP Server Log Viewer 1.0 - &#039;logfile&#039; Persistent Cross-Site Scripting

Exploit Title: WP Server Log Viewer 1.0 - 'logfile' Persistent Cross-Site Scripting Date: 2019-09-10 Exploit Author: strider Software Link: https://github.com/anttiviljami/wp-server-log-viewer Version: 1.0 Tested on: Debian 10 Buster x64 / Kali Linux CVE : None...

7.4AI score
Exploits0
0day.today
0day.today
added 2019/09/23 12:0 a.m.42 views

GOautodial 4.0 - (CreateEvent) Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: GOautodial 4.0 - 'CreateEvent' Persistent Cross-Site Scripting Author: Cakes Vendor Homepage: https://goautodial.org/ Software Link:...

0.1AI score
Exploits0
Cvelist
Cvelist
added 2019/09/20 1:38 p.m.19 views

CVE-2019-14913

An issue was discovered in PRiSE adAS 1.7.0. Log data are not properly escaped, leading to persistent XSS in the administration panel...

5.3AI score0.00864EPSS
Exploits1References2
CVE
CVE
added 2019/09/20 1:38 p.m.51 views

CVE-2019-14913

PRiSE adAS 1.7.0 is affected by a persistent XSS in the administration panel due to log data not being properly escaped. Root cause: inadequate escaping in the logging path. Impact: XSS could affect users with access to the admin UI; exact exploit details, affected components, versions beyond 1.7...

5.4CVSS5.2AI score0.00864EPSS
Exploits1References2Affected Software1
exploitpack
exploitpack
added 2019/09/19 12:0 a.m.22 views

GOautodial 4.0 - CreateEvent Persistent Cross-Site Scripting

GOautodial 4.0 - CreateEvent Persistent Cross-Site Scripting Exploit Title: GOautodial 4.0 - 'CreateEvent' Persistent Cross-Site Scripting Author: Cakes Discovery Date: 2019-09-19 Vendor Homepage: https://goautodial.org/ Software Link:...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2019/09/19 12:0 a.m.271 views

GOautodial 4.0 - &#039;CreateEvent&#039; Persistent Cross-Site Scripting

Exploit Title: GOautodial 4.0 - 'CreateEvent' Persistent Cross-Site Scripting Author: Cakes Discovery Date: 2019-09-19 Vendor Homepage: https://goautodial.org/ Software Link: https://downloads2.goautodial.org/centos/7/isos/x8664/GOautodial-4-x8664-Pre-Release-20180929-0618.iso Tested Version: 4.0...

7.4AI score
Exploits0
Rows per page
Query Builder