Lucene search
+L

154 matches found

CNVD
CNVD
added 2021/06/24 12:0 a.m.10 views

PHPGurukul Hospital Management System Cross-Site Scripting Vulnerability

PHPGurukul Hospital Management System is a web application for hospitals to manage doctors and patients. A persistent cross-site scripting vulnerability exists in \hms\admin\appointment-history.php in PHPGurukul Hospital Management System version 4.0. A remote attacker can exploit this...

5.4CVSS6.2AI score0.0052EPSS
Exploits1References1
NVD
NVD
added 2021/06/22 3:15 p.m.26 views

CVE-2020-22167

PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data...

5.4CVSS0.0052EPSS
Exploits1References1
Prion
Prion
added 2021/06/22 3:15 p.m.18 views

Cross site scripting

PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data...

3.5CVSS5.4AI score0.0052EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/06/22 2:13 p.m.47 views

CVE-2020-22167

PHPGurukul Hospital Management System v4.0 contains a persistent cross-site scripting (XSS) vulnerability in hms/admin/appointment-history.php. The issue allows remote registered users to exploit the page to obtain user cookie data, indicating an information disclosure risk via stored or reflecte...

5.4CVSS5.4AI score0.0052EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/06/22 2:13 p.m.24 views

CVE-2020-22167

PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in \hms\admin\appointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data...

5.4AI score0.0052EPSS
Exploits1References1
CNVD
CNVD
added 2021/06/21 12:0 a.m.13 views

XSS Vulnerability in Reporter by Skyrise Technology Group

Skyrise Technology Group Skyrise, founded in 1995, is a leading provider of network security, big data and cloud services in China. An XSS vulnerability exists in Tianrongxin Technology Group Reporter, which can be exploited by attackers to obtain user cookie information...

6AI score
Exploits0
CNVD
CNVD
added 2021/06/21 12:0 a.m.3 views

XSS Vulnerability in Built-in Reports of Renton Network Security Management System

Renzi Network Technology Co., Ltd. was founded in May 2000, and its business covers network security, information security, public security, network resource security, industrial internet security and many other fields, etc. etc. An XSS vulnerability exists in the built-in reports of the Renzi...

6AI score
Exploits0
CNVD
CNVD
added 2021/06/10 12:0 a.m.16 views

Stored XSS Vulnerability in Swift Flowcharts

Swift Flowchart Maker is a compact and feature-rich flowchart drawing tool. Swift Flowchart has a stored XSS vulnerability that can be exploited by an attacker to obtain user cookie information...

5.9AI score
Exploits0
CNVD
CNVD
added 2021/06/08 12:0 a.m.14 views

Language Sparrow is vulnerable to XSS

Language Sparrow is a specialized cloud-based knowledge base. Language Sparrow has an XSS vulnerability that can be exploited by an attacker to obtain user cookie information...

6AI score
Exploits0
CNVD
CNVD
added 2021/05/28 12:0 a.m.10 views

Stored XSS Vulnerability in E-ZKEco pro Time & Security Granular Management Platform

hereinafter referred to as: Entropy Base Technology is a world-renowned enterprise with biometrics as its core technology, and is committed to the empowerment of biometrics core technology and the empowerment of intelligent entrance/exit software platforms for people, vehicles, and things, etc. T...

6AI score
Exploits0
CNVD
CNVD
added 2021/05/17 12:0 a.m.3 views

XSS Vulnerability in Station Helpers CMS

Station Helpers CMS is a CMS open source system dedicated to creating a full-featured ... Station Helpers CMS has an XSS vulnerability that can be exploited by attackers to obtain user cookie information...

6AI score
Exploits0
CNVD
CNVD
added 2021/04/14 12:0 a.m.2 views

XSS Vulnerability in Cloud Collection Reviews

Cloud collection allows users to online anytime, anywhere collection of a website, the site can view the content of other people's public collection and comment. The project is developed using SpringBoot2.0 MySQL and other technologies. Cloud collection of comments there is an XSS vulnerability ,...

5.7AI score
Exploits0
CNVD
CNVD
added 2021/04/09 12:0 a.m.10 views

Learnsite Remote Elevation of Privilege Vulnerability

Learnsite is an information technology classroom learning platform. A remote elevation of privilege vulnerability exists in the JudgIsAdmin function in /Manager/index.aspx in Learnsite version 1.2.5.0. An attacker can exploit this vulnerability by modifying the first letter of the user cookie key...

8.8CVSS6.7AI score0.01109EPSS
Exploits1References1
Prion
Prion
added 2021/04/08 4:15 p.m.21 views

Privilege escalation

Learnsite 1.2.5.0 contains a remote privilege escalation vulnerability in /Manager/index.aspx through the JudgIsAdmin function. By modifying the initial letter of the key of a user cookie, the key of the administrator cookie can be obtained...

6.5CVSS8.8AI score0.01109EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2021/03/30 12:0 a.m.4 views

XSS Vulnerability in KindEditor Editor

KindEditor is a powerful free HTML editor. KindEditor editor has an XSS vulnerability that can be exploited by attackers to obtain user cookie information...

6AI score
Exploits0
CNVD
CNVD
added 2021/03/30 12:0 a.m.6 views

XSS Vulnerability in Heybbs Frontend

HEYBBS Micro Community is a bootstrap+php+mysqli based development program. Heybbs frontend has an XSS vulnerability that can be exploited by attackers to obtain user cookie information...

6.1AI score
Exploits0
CNVD
CNVD
added 2021/03/30 12:0 a.m.3 views

XSS Vulnerability in JPress v3.3.0

JPress is a WordPress-like product developed in Java. JPress v3.3.0 suffers from an XSS vulnerability that can be exploited by attackers to obtain user cookie information...

6AI score
Exploits0
0day.today
0day.today
added 2021/03/29 12:0 a.m.15 views

Budget Management System 1.0 - (Budget title) Stored XSS Vulnerability

Exploit Title: Budget Management System 1.0 - 'Budget title' Stored XSS Exploit Author: Jitendra Kumar Tripathi Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/14403/budget-management-system.html Version: 1 Tested on Windows 10 + Xampp 8.0.3 XSS...

7.4AI score
Exploits0
CNVD
CNVD
added 2021/03/12 12:0 a.m.3 views

XSS Vulnerability in Huaxia ERP

Huaxia ERP based on SpringBoot framework, SaaS model, determined to provide open source for small and medium-sized ERP software, currently focusing on sales and inventory financial functions. Huaxia ERP system there is an XSS vulnerability , an attacker can use this vulnerability to obtain user...

5.9AI score
Exploits0
CNVD
CNVD
added 2021/01/17 12:0 a.m.4 views

IBOS Enterprise Collaboration Management Software Business Edition Has XSS Vulnerabilities

IBOS Enterprise Collaboration Management Software is an open source office OA system developed by Shenzhen BOS Xiechuang Network Technology Co. IBOS enterprise collaborative management software commercial version of the XSS vulnerability, attackers can use the vulnerability to obtain user cookie...

6.1AI score
Exploits0
Rows per page
Query Builder