Lucene search
K

54 matches found

Prion
Prion
added 2019/08/22 2:15 p.m.10 views

Code injection

The time-sheets plugin before 1.5.0 for WordPress has XSS via the old timesheet list...

4.3CVSS6AI score0.00905EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/08/22 2:15 p.m.13 views

Cross site scripting

The time-sheets plugin before 1.5.2 for WordPress has multiple XSS issues...

4.3CVSS6.1AI score0.00905EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/22 1:35 p.m.45 views

CVE-2017-18582

The CVE-2017-18582 entry documents multiple XSS vulnerabilities in the WordPress time-sheets plugin, specifically in versions before 1.5.2. Affected component: time-sheets WordPress plugin; root cause: multiple cross-site scripting issues. Impact is described as client-side code execution capabil...

6.1CVSS6.1AI score0.00905EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/22 1:35 p.m.20 views

CVE-2017-18582

The time-sheets plugin before 1.5.2 for WordPress has multiple XSS issues...

6.2AI score0.00905EPSS
Exploits0References1
CVE
CVE
added 2019/08/22 1:35 p.m.44 views

CVE-2017-18581

CVE-2017-18581 affects the WordPress Time Sheets plugin. The vulnerability is a cross-site scripting (XSS) issue via the old timesheet list in versions before 1.5.0 (and related sources note continued risk for

6.1CVSS6AI score0.00905EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/22 1:35 p.m.15 views

CVE-2017-18581

The time-sheets plugin before 1.5.0 for WordPress has XSS via the old timesheet list...

6.1AI score0.00905EPSS
Exploits0References1
Cisco Threats
Cisco Threats
added 2017/08/31 7:40 p.m.10 views

Threat Outbreak Alert RuleID30432: Email Messages Distributing Malicious Software on August 31, 2017

Medium Alert ID: 55001 First Published: 2017 August 31 19:40 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID30432 may contain the following files: Name |...

0.1AI score
Exploits0
WPVulnDB
WPVulnDB
added 2017/02/19 12:0 a.m.22 views

Time Sheets < 1.5.2 - Multiple XSS

The Time Sheets WordPress plugin was affected by a Multiple XSS security vulnerability...

4.3CVSS1.8AI score0.00905EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2017/02/17 12:0 a.m.10 views

WordPress Time Sheets plugin <= 1.4.0 - Reflected Cross-Site Scripting (XSS) Vulnerability

WordPress Time Sheets plugin Reflected Cross-Site Scripting XSS Vulnerability was found in 1.4.0 version. There's a problem with sanitization with “startdate” and “enddate" GET arguments. Solution Update the plugin...

2AI score
Exploits0References2Affected Software1
NVD
NVD
added 2008/03/20 10:44 a.m.20 views

CVE-2008-1414

Cross-site scripting XSS vulnerability in Multiple Time Sheets MTS 5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the tab parameter to 1 index.php, as demonstrated using mixed case and encoded whitespace characters in the tag; or 2 clientinfo.php, 3 invoices.ph...

4.3CVSS5.7AI score0.01776EPSS
Exploits1References7
NVD
NVD
added 2008/03/20 10:44 a.m.19 views

CVE-2008-1415

Directory traversal vulnerability in index.php in Multiple Time Sheets MTS 5.0 and earlier allows remote attackers to read arbitrary files via "../..//" modified dot dot sequences in the tab parameter...

5CVSS6.8AI score0.02755EPSS
Exploits1References5
CVE
CVE
added 2008/03/20 10:0 a.m.44 views

CVE-2008-1414

CVE-2008-1414 : The vulnerability affects Multiple Time Sheets (MTS) 5.0 and earlier. A cross-site scripting (XSS) flaw exists where an attacker can inject arbitrary script or HTML via the tab parameter to index.php, or to clientinfo.php, invoices.php, smartlinks.php, and todo.php, demonstrated b...

4.3CVSS5.7AI score0.01776EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2008/03/20 10:0 a.m.20 views

CVE-2008-1414

Cross-site scripting XSS vulnerability in Multiple Time Sheets MTS 5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the tab parameter to 1 index.php, as demonstrated using mixed case and encoded whitespace characters in the tag; or 2 clientinfo.php, 3 invoices.ph...

5.7AI score0.01776EPSS
Exploits1References7
CVE
CVE
added 2008/03/20 10:0 a.m.46 views

CVE-2008-1415

CVE-2008-1415 affects the web app component index.php in Multiple Time Sheets (MTS) 5.0 and earlier. The vulnerability is a directory traversal through the tab parameter, using modified dot-dot sequences ("../..//"), allowing remote attackers to read arbitrary files. The provided documents do not...

5CVSS6.8AI score0.02755EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder