2 matches found
U.S. Dept Of Defense: PII Leak (such as CAC User ID) at https://████████/pages/login.aspx
Summary: An attacker can create an account on https://█████/pages/login.aspx and gain access to a wealth of PII for practically every member that is registered on the website. This information that the attacker has access to includes usernames, CAC User ID's, e-mail addresses, telephone numbers,...
SpiceWorks 7.2.00174 Cross Site Scripting
Exploit Title: Multiple Stored XSS vulnerabilities in SpiceWorks Ticketing system Date: 12/05/2014 Exploit author: Dolev Farhi @f1nhack Vendor homepage: http://spiceworks.com Software Link: http://download.spiceworks.com/Spiceworks.exe Version: 7.2.00174 Latest Tested on: Kali Linux Vendor alerte...