Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2026/01/08 12:15 a.m.2 views

CVE-2019-25270

SOCA Access Control System 180612 contains a cross-site scripting vulnerability in the 'senddata' POST parameter of loggedpage.php that allows attackers to inject malicious scripts. Attackers can exploit this weakness by sending crafted POST requests to execute arbitrary HTML and script code in a...

6.1CVSS0.00023EPSS
Exploits1References5
CNNVD
CNNVDadded 2026/01/08 12:0 a.m.1 views

SOCA Access Control System 跨站脚本漏洞

SOCA Access Control System is an access control system from SOCA. A cross-site scripting vulnerability exists in SOCA Access Control System version 180612, which stems from improper cleanup of the senddata parameter in the loggedpage.php file, which could lead to a cross-site scripting attack...

6.1CVSS6AI score0.00023EPSS
Exploits1References5
Cvelist
Cvelistadded 2026/01/07 11:11 p.m.26 views

CVE-2019-25270 SOCA Access Control System 180612 Reflected Cross-Site Scripting via logged_page.php

SOCA Access Control System 180612 contains a cross-site scripting vulnerability in the 'senddata' POST parameter of loggedpage.php that allows attackers to inject malicious scripts. Attackers can exploit this weakness by sending crafted POST requests to execute arbitrary HTML and script code in a...

6.1CVSS0.00023EPSS
Exploits1References5
CVE
CVEadded 2026/01/07 11:11 p.m.7 views

CVE-2019-25270

SOCA Access Control System 180612 is affected by a reflected XSS in the senddata POST parameter of logged_page.php (also referred to as logged page.php in PT-2026-1674). The root cause is improper handling/encoding of user-supplied data, allowing attackers to inject and execute arbitrary HTML/scr...

6.1CVSS6.2AI score0.00023EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2026/01/07 11:11 p.m.2 views

CVE-2019-25270 SOCA Access Control System 180612 Reflected Cross-Site Scripting via logged_page.php

SOCA Access Control System 180612 contains a cross-site scripting vulnerability in the 'senddata' POST parameter of loggedpage.php that allows attackers to inject malicious scripts. Attackers can exploit this weakness by sending crafted POST requests to execute arbitrary HTML and script code in a...

6.1CVSS6.2AI score0.00023EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2026/01/07 12:0 a.m.2 views

PT-2026-1674

Name of the Vulnerable Software and Affected Versions SOCA Access Control System version 180612 Description The SOCA Access Control System contains a cross-site scripting issue in the senddata POST parameter of the 'logged page.php' file. This allows attackers to inject malicious scripts by sendi...

6.1CVSS6.4AI score0.00023EPSS
Exploits1References8
Hacker One
Hacker Oneadded 2016/05/30 9:37 p.m.48 views

VK.com: XSS в upload.php

Добрый вечер! Раскрутил интересную xss на upload.php. Демо тут или тут. Как все было? Увидел интересный экшн upload.php?act=transport, который служит для загрузки нарисованного граффити в документы. Глаз зацепился за вызов функции eval в строке 25. Обратите внимание на параметр callback, значение...

6.9AI score
Exploits0
Rows per page
Query Builder