Lucene search
K

4 matches found

Hacker One
Hacker One
added 2025/05/08 2:55 p.m.6 views

U.S. Dept Of Defense: Reflected XSS in `Telerik.ReportViewer.axd` with F5 BIG-IP ASM Bypass on `████`

A reflected cross-site scripting XSS vulnerability was discovered in the Telerik.ReportViewer.axd endpoint on the staging subdomain. The vulnerability was exploited by leveraging an unsupported event handler that was not filtered by the F5 BIG-IP Application Security Manager ASM WAF. An obfuscate...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/10/31 12:0 a.m.22 views

Sitefinity 7.1.x < 7.1.5240.0 Multiple Vulnerabilities

The version of Sitefinity installed on the remote host is affected by multiple vulnerabilities : - An XSS vulnerability in Telerik.ReportViewer affects versions 4.2 through 11.0 CVE-2017-9140 - An XSS vulnerability in?Identity Server affects versions 10.0 through 11.0 CVE-2018-17053, CVE-2018-170...

7.5CVSS7.4AI score0.09642EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2018/10/31 12:0 a.m.24 views

Sitefinity 8.0.x < 8.0.5770.0 Multiple Vulnerabilities

The version of Sitefinity installed on the remote host is affected by multiple vulnerabilities : - An XSS vulnerability in Telerik.ReportViewer affects versions 4.2 through 11.0 CVE-2017-9140 - An XSS vulnerability in?Identity Server affects versions 10.0 through 11.0 CVE-2018-17053, CVE-2018-170...

7.5CVSS7.4AI score0.09642EPSS
Exploits4References8
OSV
OSV
added 2017/05/22 5:29 a.m.3 views

CVE-2017-9140

Cross-site scripting XSS vulnerability in Telerik.ReportViewer.WebForms.dll in Telerik Reporting for ASP.NET WebForms Report Viewer control before R1 2017 SP2 11.0.17.406 allows remote attackers to inject arbitrary web script or HTML via the bgColor parameter to Telerik.ReportViewer.axd...

6.1CVSS5.9AI score0.09642EPSS
Exploits0References3
Rows per page
Query Builder