Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:55 a.m.8 views

CVE-2019-19619

domain/section/markdown/markdown.go in Documize before 3.5.1 mishandles untrusted Markdown content. This was addressed by adding the bluemonday HTML sanitizer to defend against XSS...

6.1CVSS6.5AI score0.01245EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2024/04/02 12:0 a.m.308 views

Daily Habit Tracker 1.0 - Stored Cross-Site Scripting (XSS)

Exploit Title: Daily Habit Tracker 1.0 - Stored Cross-Site Scripting XSS Date: 2 Feb 2024 Exploit Author: Yevhenii Butenko Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17118/daily-habit-tracker-using-php-and-mysql-source-code.html Version: 1.0...

6.1CVSS6.7AI score0.25877EPSS
Exploits4
Openbugbounty
Openbugbounty
added 2016/06/24 11:0 a.m.8 views

milforddailynews.com XSS vulnerability

Open Bug Bounty ID: OBB-161390 Description| Value ---|--- Affected Website:| milforddailynews.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...

6.4AI score
Exploits0
CVE
CVE
added 2015/01/06 3:0 p.m.44 views

CVE-2014-9528

CVE-2014-9528 affects HumHub 0.10.0-rc.1 and earlier. The vulnerability is a SQL injection in the actionIndex function of protected/modules_core/notification/controllers/ListController.php, exploitable by remote authenticated users via the from parameter to index.php. The issue may also enable cr...

7.5CVSS6.9AI score0.02342EPSS
Exploits1References5Affected Software1
seebug.org
seebug.org
added 2014/09/03 12:0 a.m.20 views

cmseasy csrf导致sql注入绕过union getshell

简要描述: 上一次做了一个csrf+sql注入getshell的 这一次我继续发一个,由于此属于一个get类型的,所以很简单的,管理员根本就不用去点击,就能触发sql并且getshell 详细说明: 首先我们分析一下sql语句: admin/live/header.php:line:16-21 include'../../include/config.inc.php'; includeCEROOT.'/include/admin/check.inc.php'; includeCEROOT.'/include/celive.class.php'; $adminheader = new...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/05/09 12:0 a.m.78 views

cpanel-xssxsrf.txt

DESCRIPTION OF THE SOFTWARE cPanel is a hosting automation tool. WHM interface provides access to the heart of the cPanel and WHM package and allows a Server Administrator to simply configure a few options and be on their way to hosting web sites. 2. DESCRIPTION OF THE VULNERABILITY There are...

4.3CVSS6.6AI score0.02183EPSS
Exploits3
Rows per page
Query Builder