CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploit Title: Sitefinity 15.0 - Cross-Site Scripting XSS Exploit Author: Aldi Saputra Wahyudi Vendor Homepage: https://www.progress.com/sitefinity-cms Version:...

5.4CVSS5.5AI score0.00476EPSS

Exploits4

Packet Storm•added 2024/06/03 12:0 a.m.•283 views

Sitefinity 15.0 Cross Site Scripting

Exploit Title: Sitefinity 15.0 - Cross-Site Scripting XSS Date: 2023-12-05 Exploit Author: Aldi Saputra Wahyudi Vendor Homepage: https://www.progress.com/sitefinity-cms Version:...

6.8AI score0.00476EPSS

Exploits4

Exploit DB•added 2024/06/03 12:0 a.m.•232 views

Sitefinity 15.0 - Cross-Site Scripting (XSS)

Exploit Title: Sitefinity 15.0 - Cross-Site Scripting XSS Date: 2023-12-05 Exploit Author: Aldi Saputra Wahyudi Vendor Homepage: https://www.progress.com/sitefinity-cms Version:...

6.5CVSS7AI score0.00476EPSS

Exploits4

NVD•added 2019/11/06 4:15 p.m.•9 views

CVE-2017-18639

Progress Sitefinity CMS before 10.1 allows XSS via /Pages Parameter : Page Title, /Content/News Parameter : News Title, /Content/List Parameter : List Title, /Content/Documents/LibraryDocuments/incident-request-attachments Parameter : Document Title, /Content/Images/LibraryImages/newsimages...

6.1CVSS6AI score0.00022EPSS

Exploits1References1

OSV•added 2019/11/06 4:15 p.m.•1 views

CVE-2017-18639

6.1CVSS5.8AI score0.00022EPSS

Exploits1References1

Prion•added 2019/11/06 4:15 p.m.•11 views

Design/Logic Flaw

4.3CVSS6AI score0.00022EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/11/06 3:7 p.m.•15 views

CVE-2017-18639

6AI score0.00022EPSS

Exploits1References1

CVE•added 2019/11/06 3:7 p.m.•34 views

CVE-2017-18639

Progress Sitefinity CMS prior to version 10.1 is vulnerable to cross-site scripting (XSS) via multiple parameters: /Pages Page Title, /Content/News News Title, /Content/List List Title, /Content/Documents/LibraryDocuments/incident-request-attachments Document Title, /Content/Images/LibraryImages/...

6.1CVSS5.9AI score0.00022EPSS

Exploits1References1Affected Software1

NVD•added 2018/10/03 6:29 p.m.•10 views

CVE-2018-17053

Cross-site scripting XSS vulnerability in Identity Server in Progress Sitefinity CMS versions 10.0 through 11.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to login request parameters, a different vulnerability than CVE-2018-17054...

6.1CVSS6AI score0.00066EPSS

Exploits1References2

Prion•added 2018/10/03 6:29 p.m.•10 views

Cross site scripting

4.3CVSS5.9AI score0.00066EPSS

Exploits2References2Affected Software1

Prion•added 2018/10/03 6:29 p.m.•8 views

Cross site scripting

4.3CVSS5.9AI score0.00066EPSS

Exploits2References2Affected Software1

OSV•added 2018/10/03 6:29 p.m.•0 views

CVE-2018-17053

6.1CVSS5.9AI score0.00066EPSS

Exploits2References2

NVD•added 2018/10/03 6:29 p.m.•7 views

CVE-2018-17054

6.1CVSS6AI score0.00066EPSS

Exploits1References2

CVE•added 2018/10/03 6:0 p.m.•35 views

CVE-2018-17053

CVE-2018-17053 involves a cross-site scripting (XSS) vulnerability in the Identity Server component of Progress Sitefinity CMS, affecting Version 10.0 through 11.0. The issue allows authenticated or remote attackers to inject arbitrary web script or HTML via login-request parameters, potentially ...

6.1CVSS6AI score0.00066EPSS

Exploits1References2Affected Software1

CVE•added 2018/10/03 6:0 p.m.•38 views

CVE-2018-17054

CVE-2018-17054 is an XSS vulnerability in Sitefinity’s Identity Server component affecting Sitefinity CMS versions 10.0–11.0. The issue enables remote attackers to inject arbitrary web script or HTML via login request parameters. Connected sources confirm the identity of the vulnerable component ...

6.1CVSS6AI score0.00066EPSS

Exploits1References2Affected Software1

Cvelist•added 2018/10/03 6:0 p.m.•10 views

CVE-2018-17054

6.2AI score0.00066EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by