CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2018/10/03 6:29 p.m.•13 views

Cross site scripting

4.3CVSS5.9AI score0.00836EPSS

Exploits2References2Affected Software1

NVD•added 2018/10/03 6:29 p.m.•23 views

CVE-2018-17053

OSV•added 2018/10/03 6:29 p.m.•3 views

CVE-2018-17053

6.1CVSS5.9AI score0.00836EPSS

Exploits2References2

Cvelist•added 2018/10/03 6:0 p.m.•19 views

CVE-2018-17054

6.2AI score0.00836EPSS

CVE•added 2018/10/03 6:0 p.m.•42 views

CVE-2018-17053

CVE-2018-17053 involves a cross-site scripting (XSS) vulnerability in the Identity Server component of Progress Sitefinity CMS, affecting Version 10.0 through 11.0. The issue allows authenticated or remote attackers to inject arbitrary web script or HTML via login-request parameters, potentially ...

CVE•added 2018/10/03 6:0 p.m.•46 views

CVE-2018-17054

CVE-2018-17054 is an XSS vulnerability in Sitefinity’s Identity Server component affecting Sitefinity CMS versions 10.0–11.0. The issue enables remote attackers to inject arbitrary web script or HTML via login request parameters. Connected sources confirm the identity of the vulnerable component ...

Cvelist•added 2018/10/03 6:0 p.m.•47 views

CVE-2018-17053

6.2AI score0.00836EPSS

CNVD•added 2018/09/29 12:0 a.m.•3 views

Progress Sitefinity CMS Cross-Site Scripting Vulnerability

Progress Sitefinity CMS is an open source platform for building corporate websites and intranets. A cross-site scripting vulnerability exists in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0. A remote attacker can exploit this vulnerability to inject arbitrary web script or...

6.1CVSS6.3AI score0.00819EPSS

Exploits1References1

OSV•added 2018/09/28 12:29 a.m.•1 views

CVE-2018-17056

Cross-site scripting XSS vulnerability in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS5.9AI score

Exploits0References2

NVD•added 2018/09/28 12:29 a.m.•22 views

CVE-2018-17056

Cross-site scripting XSS vulnerability in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS6AI score0.00819EPSS

Prion•added 2018/09/28 12:29 a.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.00819EPSS

Cvelist•added 2018/09/28 12:0 a.m.•13 views

CVE-2018-17055

An arbitrary file upload vulnerability in Progress Sitefinity CMS versions 4.0 through 11.0 related to image uploads...

7.4AI score0.00967EPSS

CVE•added 2018/09/28 12:0 a.m.•53 views

CVE-2018-17055

CVE-2018-17055 affects Progress Sitefinity CMS, versions 4.0 through 11.0. The issue is an arbitrary file upload vulnerability related to image uploads. The provided documents do not specify the exact attack vector, exploit details, or affected components beyond the image-upload context, nor do t...

7.5CVSS7.3AI score0.00967EPSS