Lucene search
K

8 matches found

Prion
Prion
added 2022/05/04 9:15 a.m.18 views

Code injection

DOM XSS in microweber ver 1.2.15 in GitHub repository microweber/microweber prior to 1.2.16. inject arbitrary js code, deface website, steal cookie...

4.3CVSS6AI score0.0125EPSS
Exploits1References2Affected Software1
Exploit DB
Exploit DB
added 2021/03/23 12:0 a.m.249 views

Hotel And Lodge Management System 1.0 - 'Customer Details' Stored XSS

Exploit Title: Hotel And Lodge Management System 1.0 - 'Customer Details' Stored XSS Exploit Author: Jitendra Kumar Tripathi Vendor Homepage: https://www.sourcecodester.com/php/13707/hotel-and-lodge-management-system.html Software Link:...

7.4AI score
Exploits0
NVD
NVD
added 2020/12/30 3:15 p.m.21 views

CVE-2020-29233

WonderCMS 3.1.3 is affected by cross-site scripting XSS in the Page description component. This vulnerability can allow an attacker to inject the XSS payload in the Page description and each time any user will visits the website, the XSS triggers and attacker can steal the cookie according to the...

5.4CVSS5.2AI score0.01271EPSS
Exploits3References1
Prion
Prion
added 2019/06/07 8:29 p.m.19 views

Cross site scripting

An issue was discovered on Moxa AWK-3121 1.14 devices. The session cookie "Password508" does not have an HttpOnly flag. This allows an attacker who is able to execute a cross-site scripting attack to steal the cookie very easily...

4.3CVSS6.6AI score0.01284EPSS
Exploits1References3Affected Software1
OpenVAS
OpenVAS
added 2012/06/01 12:0 a.m.8 views

Ganesha Digital Library Multiple SQLi and XSS Vulnerabilities

Ganesha Digital Library is prone to multiple SQL injection SQLi and cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier...

7.3AI score
Exploits0References3
exploitpack
exploitpack
added 2012/02/15 12:0 a.m.19 views

11in1 CMS 1.2.1 - index.php?class Traversal Local File Inclusion

11in1 CMS 1.2.1 - index.php?class Traversal Local File Inclusion source: https://www.securityfocus.com/bid/52025/info 11in1 is prone to a cross-site request-forgery and a local file include vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

0.1AI score
Exploits0
OpenVAS
OpenVAS
added 2008/09/02 12:0 a.m.19 views

dotProject Multiple XSS and SQLi Vulnerabilities

dotProject is prone to multiple cross-site scripting CSS and SQL injection SQLi vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

4.3CVSS7AI score0.01073EPSS
Exploits1References3
exploitpack
exploitpack
added 2005/08/27 12:0 a.m.16 views

Looking Glass - Cross-Site Scripting

Looking Glass - Cross-Site Scripting source: https://www.securityfocus.com/bid/14680/info Looking Glass is prone to a cross-site scripting vulnerability. This issue may be exploited to steal cookie-based authentication credentials from legitimate users of the software. Other attacks are also...

6.8AI score
Exploits0
Rows per page
Query Builder