Lucene search
+L

128 matches found

Openbugbounty
Openbugbounty
added 2018/04/20 6:48 a.m.17 views

jira-prod-app02.it.su.se XSS vulnerability

Open Bug Bounty ID: OBB-604955 Description| Value ---|--- Affected Website:| jira-prod-app02.it.su.se Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
CNVD
CNVD
added 2017/03/21 12:0 a.m.6 views

qdPM Information Disclosure Vulnerability

qdPM is a free , open source based on Symfony framework using PHP and MySQL development project management system . An information disclosure vulnerability exists in qdPM version 8.3. A remote attacker can exploit this vulnerability by sending a direct request to core/config/databases.yml,...

7.5CVSS6.3AI score0.01545EPSS
Exploits1References1
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2016/02/18 12:0 a.m.51 views

Stable Channel Update for Chrome OS

The Stable channel has been updated to 48.0.2564.116 Platform version: 7647.84.0 for all Chrome OS devices. This build contains a number of bug fixes, and security fixes. Systems will be receiving updates over the next several days. Security Fixes Note: Access to bug details and links may be kept...

8.1CVSS8.1AI score0.89557EPSS
Exploits17Affected Software1
Openbugbounty
Openbugbounty
added 2016/01/15 9:47 p.m.10 views

ch-fr.pre-prod.nissan.eu XSS vulnerability

Vulnerable URL: http://ch-fr.pre-prod.nissan.eu/CH/fr/htmlshare.-popupsharehtml.html?url=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 12:35 GMT Vulnerability type:| XSS Vulnerability status:|...

6.3AI score
Exploits0
CNVD
CNVD
added 2015/03/06 12:0 a.m.6 views

WordPress Photocrati Theme SQL Injection Vulnerability

WordPress is the WordPress Software Foundation's suite of blogging platforms developed using the PHP language, which supports personal blog sites on servers running PHP and MySQL.Photocrati is one of the photography themes. A SQL injection vulnerability exists in the ecomm-sizes.php script in...

7.5CVSS8.6AI score0.04737EPSS
Exploits2References1
NVD
NVD
added 2010/05/07 8:30 p.m.17 views

CVE-2010-1857

SQL injection vulnerability in index.php in RepairShop2 1.9.023 Trial, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the prod parameter in a products.details action. NOTE: the provenance of this information is unknown; the details are obtained sole...

6.8CVSS8AI score0.01135EPSS
Exploits0References3
Prion
Prion
added 2010/05/07 8:30 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in RepairShop2 1.9.023 Trial, when magicquotesgpc is disabled, allows remote attackers to inject arbitrary web script or HTML via the prod parameter in a products.details action...

2.6CVSS6.1AI score0.01504EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2007/12/20 12:46 a.m.2 views

CVE-2007-6466

Multiple SQL injection vulnerabilities in index.php in FreeWebshop 2.2.1 allow remote attackers to execute arbitrary SQL commands via 1 the prod parameter in a details action, 2 the cat parameter in a browse list action, or 3 the group parameter in a categories action. NOTE: it was later reported...

7.5CVSS6.4AI score0.01179EPSS
Exploits1References7
Rows per page
Query Builder