19 matches found
EUVD-2020-7845
Malware in sbrugna...
EUVD-2017-18697
Malware in sbrugna...
CVE-2020-15864
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page...
Quali CloudShell Cross-Site Scripting Vulnerability (CNVD-2021-06529)
Quali CloudShell is a cloud service from Quali USA for managing infrastructure provisioning, cloud orchestration, automated deployments and more in cloud environments. A cross-site scripting vulnerability exists in Quali CloudShell version 9.3 that originates on the login page and can be exploite...
CVE-2020-15864
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page...
CVE-2020-15864
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page...
Design/Logic Flaw
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page...
CVE-2020-15864
Quali CloudShell 9.3 contains a cross-site scripting (XSS) flaw in the login page. An attacker can craft a URL including a username field containing constructor.constructor, which executes a payload when the user visits /Account/Login. Public references come from CVE-2020-15864 (NVD entry) and re...
CVE-2020-15864
An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page...
CVE-2017-9767
Multiple cross-site scripting XSS vulnerabilities in Quali CloudShell before 8 allow remote authenticated users to inject arbitrary web script or HTML via the 1 Name or 2 Description parameter to RM/Reservation/ReserveNew; the 3 Description parameter to RM/Topology/Update; the 4 Name, 5...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Quali CloudShell before 8 allow remote authenticated users to inject arbitrary web script or HTML via the 1 Name or 2 Description parameter to RM/Reservation/ReserveNew; the 3 Description parameter to RM/Topology/Update; the 4 Name, 5...
CVE-2017-9767
Multiple cross-site scripting XSS vulnerabilities in Quali CloudShell before 8 allow remote authenticated users to inject arbitrary web script or HTML via the 1 Name or 2 Description parameter to RM/Reservation/ReserveNew; the 3 Description parameter to RM/Topology/Update; the 4 Name, 5...
CVE-2017-9767
Multiple cross-site scripting XSS vulnerabilities in Quali CloudShell before 8 allow remote authenticated users to inject arbitrary web script or HTML via the 1 Name or 2 Description parameter to RM/Reservation/ReserveNew; the 3 Description parameter to RM/Topology/Update; the 4 Name, 5...
CVE-2017-9767
CVE-2017-9767 describes multiple stored XSS vulnerabilities in Quali CloudShell prior to version 8. The flaws allow remote authenticated users to inject arbitrary HTML/script via several parameters across UI functions: RM/Reservation/ReserveNew (Name, Description), RM/Topology/Update (Description...
Quali CloudShell 7.1.0.6508 (Patch 6) - Persistent Cross Site Scripting Vulnerability
Exploit for windows platform in category web applications Vulnerability type: Multiple Stored Cross Site Scripting Vendor: Quali Product: CloudShell Affected version: v7.1.0.6508 Patch 6 Patched version: v8 and up Credit: Benjamin Lee CVE ID: CVE-2017-9767...
Quali CloudShell Cross-Site Scripting Vulnerability
Quali CloudShell is a suite of cloud sandboxing software for delivering full-stack IT environments in hybrid clouds from Quali System, Israel. A cross-site scripting vulnerability exists in versions prior to Quali CloudShell 8. The vulnerability can be exploited by remote attackers to inject...
Quali CloudShell 7.1.0.6508 (Patch 6) Cross Site Scripting
Vulnerability type: Multiple Stored Cross Site Scripting Vendor: Quali Product: CloudShell Affected version: v7.1.0.6508 Patch 6 Patched version: v8 and up Credit: Benjamin Lee CVE ID: CVE-2017-9767 ========================================================== Overview Quali CloudShell v7.1.0.6508...
Quali CloudShell 7.1.0.6508 (Patch 6) - Persistent Cross-Site Scripting
Quali CloudShell 7.1.0.6508 Patch 6 - Persistent Cross-Site Scripting Vulnerability type: Multiple Stored Cross Site Scripting Vendor: Quali Product: CloudShell Affected version: v7.1.0.6508 Patch 6 Patched version: v8 and up Credit: Benjamin Lee CVE ID: CVE-2017-9767...
Quali CloudShell 7.1.0.6508 (Patch 6) - Persistent Cross-Site Scripting
Vulnerability type: Multiple Stored Cross Site Scripting Vendor: Quali Product: CloudShell Affected version: v7.1.0.6508 Patch 6 Patched version: v8 and up Credit: Benjamin Lee CVE ID: CVE-2017-9767 ========================================================== Overview Quali CloudShell v7.1.0.6508...