Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-18964

Malware in sbrugna...

6.1CVSS6.2AI score0.0442EPSS
Exploits5References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-18962

Malware in sbrugna...

6.1CVSS6.2AI score0.05348EPSS
Exploits5References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-18963

Malware in sbrugna...

6.1CVSS6.2AI score0.05304EPSS
Exploits5References5
Exploit DB
Exploit DB
added 2019/04/08 12:0 a.m.98 views

ShoreTel Connect ONSITE < 19.49.1500.0 - Multiple Vulnerabilities

Exploit Title: Shoretel Connect Multiple Vulnerability Google Dork: inurl:/signin.php?ret= Date: 14/06/2017 Author: Ramikan Vendor Homepage: https://www.shoretel.com/ Software Link: https://www.shoretel.com/resource-center/shoretel-connect-onsite-overview Version: Tested on 18.62.2000.0,...

6.1CVSS6.2AI score0.05348EPSS
Exploits7
Packet Storm
Packet Storm
added 2019/04/07 12:0 a.m.38 views

ShoreTel Connect ONSITE Cross Site Scripting / Session Fixation

Exploit Title: Shoretel Connect Multiple Vulnerability Google Dork: inurl:/signin.php?ret= Date: 14/06/2017 Author: Ramikan Vendor Homepage: https://www.shoretel.com/ Software Link: https://www.shoretel.com/resource-center/shoretel-connect-onsite-overview Version: Tested on 18.62.2000.0,...

4.3CVSS6.2AI score0.05348EPSS
Exploits7
NVD
NVD
added 2019/03/06 4:29 p.m.15 views

CVE-2019-9591

A reflected Cross-site scripting XSS vulnerability in ShoreTel Connect ONSITE before 19.49.1500.0 allows remote attackers to inject arbitrary web script or HTML via the brandUrl parameter...

6.1CVSS6.1AI score0.05348EPSS
Exploits5References3
OSV
OSV
added 2019/03/06 4:29 p.m.3 views

CVE-2019-9591

A reflected Cross-site scripting XSS vulnerability in ShoreTel Connect ONSITE before 19.49.1500.0 allows remote attackers to inject arbitrary web script or HTML via the brandUrl parameter...

6.1CVSS6.5AI score0.05348EPSS
Exploits5References3
Prion
Prion
added 2019/03/06 4:29 p.m.17 views

Cross site scripting

A reflected Cross-site scripting XSS vulnerability in ShoreTel Connect ONSITE 19.45.1602.0 allows remote attackers to inject arbitrary web script or HTML via the url parameter...

4.3CVSS6AI score0.05304EPSS
Exploits5References3Affected Software1
NVD
NVD
added 2019/03/06 4:29 p.m.20 views

CVE-2019-9592

A reflected Cross-site scripting XSS vulnerability in ShoreTel Connect ONSITE 19.45.1602.0 allows remote attackers to inject arbitrary web script or HTML via the url parameter...

6.1CVSS6.1AI score0.05304EPSS
Exploits5References3
OSV
OSV
added 2019/03/06 4:29 p.m.2 views

CVE-2019-9592

A reflected Cross-site scripting XSS vulnerability in ShoreTel Connect ONSITE 19.45.1602.0 allows remote attackers to inject arbitrary web script or HTML via the url parameter...

6.1CVSS6.5AI score0.05304EPSS
Exploits5References3
Prion
Prion
added 2019/03/06 4:29 p.m.16 views

Cross site scripting

A reflected Cross-site scripting XSS vulnerability in ShoreTel Connect ONSITE before 19.49.1500.0 allows remote attackers to inject arbitrary web script or HTML via the brandUrl parameter...

4.3CVSS6AI score0.05348EPSS
Exploits5References3Affected Software1
Cvelist
Cvelist
added 2019/03/06 4:0 p.m.29 views

CVE-2019-9593

A reflected Cross-site scripting XSS vulnerability in ShoreTel Connect ONSITE 18.82.2000.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter...

6AI score0.0442EPSS
Exploits5References3
CVE
CVE
added 2019/03/06 4:0 p.m.76 views

CVE-2019-9593

CVE-2019-9593 affects ShoreTel Connect ON SITE 18.82.2000.0. The vulnerability is a reflected XSS via the page parameter on a ShoreTel Connect ONSITE web page, enabling remote attackers to inject arbitrary script/HTML. The issue is documented across multiple sources (NVD and Mitel/OnSite disclosu...

6.1CVSS6AI score0.0442EPSS
Exploits5References3Affected Software1
CVE
CVE
added 2019/03/06 4:0 p.m.56 views

CVE-2019-9592

CVE-2019-9592 affects ShoreTel Connect ONSITE 19.45.1602.0 with a reflected XSS via the url parameter in the signin flow. The root cause is improper handling of the url parameter allowing arbitrary script execution in the victim’s browser. Public references consistently cite the affected version ...

6.1CVSS6AI score0.05304EPSS
Exploits5References3Affected Software1
CVE
CVE
added 2019/03/06 4:0 p.m.92 views

CVE-2019-9591

ShoreTel Connect ONSITE prior to 19.49.1500.0 is affected by a reflected XSS via the brandUrl parameter. Impact is arbitrary script injection in the user’s browser. Root cause: unvalidated input reflected into the page. Affected component: signin.php (brandUrl parameter). Remediation: upgrade to ...

6.1CVSS6AI score0.05348EPSS
Exploits5References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/03/06 12:0 a.m.4 views

PT-2019-19733 · Shoretel · Shoretel Connect Onsite

Name of the Vulnerable Software and Affected Versions: ShoreTel Connect ONSITE version 19.45.1602.0 Description: A reflected Cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML via the url parameter. This enables attackers to potentially execute malicious...

6.1CVSS6.1AI score0.05304EPSS
Exploits5References4
Positive Technologies
Positive Technologies
added 2019/03/06 12:0 a.m.4 views

PT-2019-19732 · Shoretel · Shoretel Connect Onsite

Name of the Vulnerable Software and Affected Versions: ShoreTel Connect ONSITE versions prior to 19.49.1500.0 Description: A reflected Cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via the brandUrl parameter. Recommendations: For versions prior to...

6.1CVSS6.1AI score0.05348EPSS
Exploits5References4
Positive Technologies
Positive Technologies
added 2017/06/14 12:0 a.m.3 views

PT-2017-3787 · Mitel · Shoretel Connect Onsite

Name of the Vulnerable Software and Affected Versions: ShoreTel Connect ONSITE version 18.82.2000.0 Description: A reflected Cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML via the page parameter. This is related to the lack of protection measures for...

6.4CVSS6.1AI score0.0442EPSS
Exploits5References7
0day.today
0day.today
added 2016/09/19 12:0 a.m.37 views

ShoreTel Connect ONSITE - Blind SQL Injection

Exploit for php platform in category web applications Exploit Title: ShoreTel Connect ONSITE Blind SQL Injection Vulnerability Date: 19-09-2016 Software Link: https://www.shoretel.com/resource-center/shoretel-connect-onsite-overview Exploit Author: Iraklis Mathiopoulos Contact:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2016/09/19 12:0 a.m.54 views

ShoreTel Connect ONSITE Blind SQL Injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ShoreTel Connect ONSITE Blind SQL Injection Vulnerability ======================================================================= vulnerability type: Unauthenticated Blind SQL Injection product: ShoreTel Connect ONSITE vulnerable version: 20.xx.xxxx...

7.4AI score
Exploits0
Rows per page
Query Builder