Lucene search
+L

156 matches found

CVE
CVE
added 2011/02/04 12:0 a.m.42 views

CVE-2011-0774

PivotX before 2.2.2 has an information-disclosure vulnerability: direct requests to includes/ping.php and includes/spamping.php reveal the installation path in an error message. Affected: PivotX (version prior to 2.2.2). Root cause: error messaging exposes installation path, enabling partial conf...

5CVSS6.3AI score0.0135EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/02/04 12:0 a.m.47 views

CVE-2011-0775

PivotX 2.2.2 is affected by a vulnerability in pivotx/modules/module_image.php where an invalid image parameter triggers an error message that reveals the installation path, enabling information disclosure. The root cause is an error message disclosure when the image parameter references a non-ex...

5CVSS6.3AI score0.01242EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2011/02/04 12:0 a.m.49 views

CVE-2011-0772

PivotX is affected by CVE-2011-0772: multiple XSS vulnerabilities in PivotX 2.2.0 and possibly earlier versions before 2.2.2. The root cause is insufficient input sanitization in two parameters: color in includes/blogroll.php and src in includes/timwrapper.php, allowing remote attackers to inject...

4.3CVSS6AI score0.02518EPSS
Exploits1References13Affected Software1
OpenVAS
OpenVAS
added 2011/01/26 12:0 a.m.22 views

PivotX 'module_image.php' Cross Site Scripting Vulnerability

PivotX is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

4.3CVSS6AI score0.0236EPSS
Exploits1References2
exploitpack
exploitpack
added 2011/01/25 12:0 a.m.15 views

PivotX 2.2 - pivotxincludesblogroll.php?color Cross-Site Scripting

PivotX 2.2 - pivotxincludesblogroll.php?color Cross-Site Scripting source: https://www.securityfocus.com/bid/45996/info PivotX is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2011/01/25 12:0 a.m.9 views

PivotX 2.2.2 - module_image.php Cross-Site Scripting

PivotX 2.2.2 - moduleimage.php Cross-Site Scripting source: https://www.securityfocus.com/bid/45983/info PivotX is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in th...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2011/01/25 12:0 a.m.31 views

HTB22789: Path disclousure in Pivotx

Vulnerability ID: HTB22789 Reference: http://www.htbridge.ch/advisory/pathdisclousureinpivotx.html Product: Pivotx Vendor: Pivotx Team http://pivotx.net/ Vulnerable Version: 2.2.0 Vendor Notification: 11 January 2011 Vulnerability Type: Path disclosure Status: Awaiting Vendor Solution Risk level:...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2011/01/25 12:0 a.m.17 views

PivotX 2.2.2 Cross Site Scripting

------------------------------------------------------------------------ Software................PivotX 2.2.2 Vulnerability...........Reflected Cross-site Scripting Download................http://pivotx.net/ Release Date............1/23/2011 Tested On...............Windows Vista + XAMPP...

Exploits0
exploitpack
exploitpack
added 2011/01/25 12:0 a.m.15 views

PivotX 2.2 - pivotxincludestimwrapper.php?src Cross-Site Scripting

PivotX 2.2 - pivotxincludestimwrapper.php?src Cross-Site Scripting source: https://www.securityfocus.com/bid/45996/info PivotX is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2011/01/25 12:0 a.m.44 views

HTB22788: XSS in Pivotx

Vulnerability ID: HTB22788 Reference: http://www.htbridge.ch/advisory/xssinpivotx.html Product: Pivotx Vendor: Pivotx Team http://pivotx.net/ Vulnerable Version: 2.2.0 Vendor Notification: 11 January 2011 Vulnerability Type: XSS Cross Site Scripting Status: Awaiting Vendor Solution Risk level:...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2011/01/25 12:0 a.m.45 views

HTB22790: XSS in Pivotx

Vulnerability ID: HTB22790 Reference: http://www.htbridge.ch/advisory/xssinpivotx1.html Product: Pivotx Vendor: Pivotx Team http://pivotx.net/ Vulnerable Version: 2.2.0 Vendor Notification: 11 January 2011 Vulnerability Type: XSS Cross Site Scripting Status: Awaiting Vendor Solution Risk level:...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/01/25 12:0 a.m.26 views

Pivotx 2.2.0 Cross Site Scripting / Path Disclosure

================================== Vulnerability ID: HTB22788 Reference: http://www.htbridge.ch/advisory/xssinpivotx.html Product: Pivotx Vendor: Pivotx Team http://pivotx.net/ Vulnerable Version: 2.2.0 Vendor Notification: 11 January 2011 Vulnerability Type: XSS Cross Site Scripting Status:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/01/25 12:0 a.m.19 views

PivotX 2.2 - '/pivotx/includes/timwrapper.php?src' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45996/info PivotX is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/01/25 12:0 a.m.21 views

PivotX 2.2 - '/pivotx/includes/blogroll.php?color' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45996/info PivotX is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/01/25 12:0 a.m.16 views

PivotX 2.2.2 - 'module_image.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45983/info PivotX is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

7.4AI score
Exploits0
htbridge
htbridge
added 2011/01/11 12:0 a.m.25 views

Multiple Vulnerabilities in Pivotx

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Pivotx which could be exploited to perform cross-site scripting attacks and disclose potentially sensitive information. 1 Cross-site scripting XSS vulnerabilities in Pivotx: CVE-2011-0772 1.1 The vulnerability...

4.3CVSS6.3AI score0.02518EPSS
Exploits1Affected Software1
Rows per page
Query Builder