EUVD-2017-6209

Malware in sbrugna...

EPESI 1.8.2 rev20170830 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Multiple Stored XSS in EPESI Date: 10/03/2017 Exploit Author: Zeeshan Shaikh Vendor Homepage: http://epe.si/ Software Link: http://epe.si/download/ Version: 1.8.2 rev20170830 CVE : CVE-2017-14712 to CVE-2017-14717 Category:...

EPESI 1.8.2 Revision 20170830 Cross Site Scripting

Exploit Title: Multiple Stored XSS in EPESI Date: 10/03/2017 Exploit Author: Zeeshan Shaikh Vendor Homepage: http://epe.si/ Software Link: http://epe.si/download/ Version: 1.8.2 rev20170830 CVE : CVE-2017-14712 to CVE-2017-14717 Category: webapps XSS 1 Tasks - Title Steps to recreate: 1...

Telaxus EPESI Cross-Site Scripting Vulnerability (CNVD-2017-32710)

Telaxus EPESI is a Polish company Telaxus open source customer relationship management system based on PHP/Ajax framework CRM. The system provides schedule management , multi-user address book , proxy matters and other functions . A cross-scripting vulnerability vulnerability exists in the 'Tasks...

Cross site scripting

In EPESI 1.8.2 rev20170830, there is Stored XSS in the Tasks Phonecall Notes Title parameter...

CVE-2017-14712

In EPESI 1.8.2 rev20170830, there is Stored XSS in the Tasks Phonecall Notes Title parameter...

CVE-2017-14712

Affected product: EPESI 1.8.2 rev20170830. Vulnerability: Stored XSS in the Tasks Phonecall Notes Title parameter. Root cause (per sources): unescaped input in that field allows script injection, enabling arbitrary script execution in the context of the user. Impact: described as cross-site scrip...

CVE-2017-14712

In EPESI 1.8.2 rev20170830, there is Stored XSS in the Tasks Phonecall Notes Title parameter...