CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Veracode•added 2018/04/26 3:14 a.m.•14 views

Cross-site Scripting (XSS)

rainlab/user-plugin is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the improper use of formvalue which does not provide escaping of user input, allowing XSS to occur...

6.1CVSS5.5AI score0.00482EPSS

Exploits5References3Affected Software1

Packet Storm•added 2018/04/26 12:0 a.m.•33 views

October CMS User 1.4.5 Cross Site Scripting

Exploit Title: October CMS User Plugin v1.4.5 - Persistent Cross-Site Scripting Date: 2018-04-03 Author: 0xB9 Software Link: https://octobercms.com/plugin/rainlab-user Version: 1.4.5 Tested on: Ubuntu 17.10 CVE: CVE-2018-10366 1. Description: Front-end user management for October CMS. Allows...

6.3AI score0.00482EPSS

Exploits5

0day.today•added 2018/04/26 12:0 a.m.•49 views

October CMS User Plugin v1.4.5 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: October CMS User Plugin v1.4.5 - Persistent Cross-Site Scripting Author: 0xB9 Software Link: https://octobercms.com/plugin/rainlab-user Version: 1.4.5 Tested on: Ubuntu 17.10 CVE: CVE-2018-10366 1. Description: Front-end user...

6.3AI score0.00482EPSS

Exploits5