Lucene search
+L

4 matches found

Vulnrichment
Vulnrichment
added 2024/11/15 3:27 p.m.18 views

CVE-2024-49764 LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/capture.inc.php

LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting XSS vulnerability in the "Capture Debug Information" page allows authenticated users to inject arbitrary JavaScript through the "hostname" parameter when creating a new device. This...

4.8CVSS5.6AI score0.00381EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/08/05 6:0 a.m.36 views

CVE-2024-3636 Pinpoint Booking System < 2.9.9.4.8 - Admin+ Stored XSS

The Pinpoint Booking System WordPress plugin before 2.9.9.4.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

0.00369EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/01/22 5:20 p.m.38 views

CVE-2021-21260 XSS in description field

Online Invoicing System OIS is open source software which is a lean invoicing system for small businesses, consultants and freelancers created using AppGini. In OIS version 4.0 there is a stored XSS which can enables an attacker takeover of the admin account through a payload that extracts a csrf...

7.6CVSS7.4AI score0.00596EPSS
Exploits1References2
myhack58
myhack58
added 2013/12/09 12:0 a.m.16 views

Dimensions buy the system stored XSS can be comfortably background-vulnerability warning-the black bar safety net

fanwe buy the system thereXSScan obtain an administrator cookie and into the background First, in a goods to go in, inside there will be a refund of the message, will be there even if paid. Then comments can be addedXSS, the administrator every day view, the view will obtain administrator COOkie...

2AI score
Exploits0
Rows per page
Query Builder