exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 25 of 18,177

XSS Files

Red Hat Security Advisory 2024-1867-03

Posted Apr 18, 2024

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-1867-03 - A bug update is now available for Red Hat build of Keycloak 22.0.10 images running on OpenShift Container Platform. This is an enhancement and security update with Moderate impact rating. Issues addressed include bypass, cross site scripting, denial of service, and traversal vulnerabilities.

tags | advisory, denial of service, vulnerability, xss

systems | linux, redhat

advisories | CVE-2023-0657

SHA-256 | 1ac51b738eb7ec90f6df4fd1548d65c4d5fc884ed10359f9621a5aef5ca0c9b1

Download | Favorite | View

Relate Cross Site Scripting

Posted Apr 18, 2024

Authored by kai6u

Relate learning and teaching system versions prior to 2024.1 suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 3a5eecac3aca18d20a7a031bd440baad2966d7f4f2e4228a13dd171b4d91f376

Download | Favorite | View

Red Hat Security Advisory 2024-1868-03

Posted Apr 17, 2024

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-1868-03 - An update is now available for Red Hat build of Keycloak. Issues addressed include bypass, cross site scripting, and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability, xss

systems | linux, redhat

advisories | CVE-2023-0657

SHA-256 | 30aed3acd3e4f969cf77c6d68e2564174f4c8f0552b53be6fe4b1db2999dc60e

Download | Favorite | View

Ubuntu Security Notice USN-6732-1

Posted Apr 16, 2024

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6732-1 - Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss

systems | linux, ubuntu

advisories | CVE-2023-42843, CVE-2024-23254

SHA-256 | de34dd341ebb6d403b4c828166ceeda34879902207f833c29fa8ffd18d7ee2ad

Download | Favorite | View

Amazon AWS Glue Database Password Disclosure

Posted Apr 15, 2024

Authored by Michael Werner | Site sec-consult.com

The password of database connections in AWS Glue is loaded into the website when a connection's edit page is requested. Principals with appropriate permissions can read the password. This behavior also increases the risk that database passwords will be intercepted by an attacker during transmission in the server response. Many types of vulnerabilities, such as broken access controls, cross site scripting and weaknesses in session handling, could enable an attacker to leverage this behavior to retrieve the passwords.

tags | exploit, vulnerability, xss

SHA-256 | 70e6691798348933f72079d525b978bc0517e5c1f2d9ac8b96813c23d1234685

Download | Favorite | View

WordPress WP Video Playlist 1.1.1 Cross Site Scripting

Posted Apr 15, 2024

Authored by Erdemstar

WordPress WP Video Playlist plugin version 1.1.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 44b6783873b84d60c9427dd76b9a98383fd7f993964765bebb0b876b91c1beda

Download | Favorite | View

WordPress Playlist For Youtube 1.32 Cross Site Scripting

Posted Apr 12, 2024

Authored by Erdemstar

WordPress Playlist for Youtube plugin version 1.32 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 89bd57c1d15c2fdb70027b10bc188998968404fee02a9c3318c678b99724d195

Download | Favorite | View

OX App Suite 7.10.6 Cross Site Scripting / Deserialization Issue

Posted Apr 11, 2024

Authored by Martin Heiland

OX App Suite version 7.10.6 suffers from cross site scripting and deserialization vulnerabilities.

tags | advisory, vulnerability, xss

advisories | CVE-2023-46604, CVE-2024-23189, CVE-2024-23190, CVE-2024-23191, CVE-2024-23192

SHA-256 | d67b15e5e463386e7b28cf5d7d03eebfcf3f668423493ad7f356fc890f038561

Download | Favorite | View

Concrete CMS 9.2.7 Cross Site Scripting / Open Redirect

Posted Apr 11, 2024

Authored by Andrey Stoykov

Concrete CMS version 9.2.7 suffers from information disclosure, open redirection, and persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure

SHA-256 | a4e09ec269b6fd6e7d21fa37778ad6cc59fa7c6ed21097b3b6e52c179ba94e14

Download | Favorite | View

CHAOS RAT 5.0.1 Remote Command Execution

Posted Apr 10, 2024

Authored by chebuya

CHAOS RAT web panel version 5.0.1 is vulnerable to command injection, which can be triggered from a cross site scripting attack, allowing an attacker to takeover the RAT server.

tags | exploit, web, xss

advisories | CVE-2024-30850, CVE-2024-31839

SHA-256 | 343ca35b11570c993ed8818aa37a56638c474563d756a7ac0c8f9334b16b6ca5

Download | Favorite | View

Open eShop 2.7.0 Cross Site Scripting

Posted Apr 8, 2024

Authored by tmrswrr

Open eShop version 2.7.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | ffc1ccc2b126ca15fb375709398eeafd3eb66b2b5e4657e3a0744439ad777b8c

Download | Favorite | View

HTMLy 2.9.6 Cross Site Scripting

Posted Apr 8, 2024

Authored by tmrswrr

HTMLy version 2.9.6 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 7c364eb28a81f6893bdac09aa21445e515fda3d2ede1335da9224b08d6224934

Download | Favorite | View

Feng Office 3.10.8.21 Cross Site Scripting

Posted Apr 5, 2024

Authored by tmrswrr

Feng Office version 3.10.8.21 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | ad3a7614cba9fce96ba0ef2c4100acb2e516bae93834f646720f56ca266fd5e3

Download | Favorite | View

DerbyNet 9.0 playlist.php Cross Site Scripting

Posted Apr 5, 2024

Authored by Valentin Lobstein

DerbyNet version 9.0 suffers from a cross site scripting vulnerability in playlist.php.

tags | exploit, php, xss

advisories | CVE-2024-30929

SHA-256 | 33a3298bf5768c9f7a9fcd2deaa459729d65f2eb60c8601a0d2dd30561151395

Download | Favorite | View

DerbyNet 9.0 racer-results.php Cross Site Scripting

Posted Apr 5, 2024

Authored by Valentin Lobstein

DerbyNet version 9.0 suffers from a cross site scripting vulnerability in racer-results.php.

tags | exploit, php, xss

advisories | CVE-2024-30927

SHA-256 | e1f0ec83ec56b1d3ebff89be4223a47e4c6caea8be38185b375b827447078473

Download | Favorite | View

DerbyNet 9.0 inc/kisosks.inc Cross Site Scripting

Posted Apr 5, 2024

Authored by Valentin Lobstein

DerbyNet version 9.0 suffers from a cross site scripting vulnerability in inc/kiosks.inc.

tags | exploit, xss

advisories | CVE-2024-30926

SHA-256 | 74c4544a3c0353807fe286b034266f311ce4af6f554209e73f1d797e5fbff5cc

Download | Favorite | View

DerbyNet 9.0 photo-thumbs.php Cross Site Scripting

Posted Apr 5, 2024

Authored by Valentin Lobstein

DerbyNet version 9.0 suffers from a cross site scripting vulnerability in photo-thumbs.php.

tags | exploit, php, xss

advisories | CVE-2024-30925

SHA-256 | e33a05805911bcd786fdff15a7d4ac31f136e43e12a0f9ec5b25c0db38d7fe3e

Download | Favorite | View

DerbyNet 9.0 checkin.php Cross Site Scripting

Posted Apr 5, 2024

Authored by Valentin Lobstein

DerbyNet version 9.0 suffers from a cross site scripting vulnerability in checkin.php.

tags | exploit, php, xss

advisories | CVE-2024-30924

SHA-256 | 8f9e6fd28f6cfe91749cb218425046ee910787a3a9fd05dafed94fca09da5a72

Download | Favorite | View

DerbyNet 9.0 photo.php Cross Site Scripting

Posted Apr 5, 2024

Authored by Valentin Lobstein

DerbyNet version 9.0 suffers from a cross site scripting vulnerability in photo.php.

tags | exploit, php, xss

advisories | CVE-2024-30921

SHA-256 | d7ac5458d2d0756d2d607450406a0027661faffb3740c59db51f83e2e7620fe8

Download | Favorite | View

DerbyNet 9.0 render-document.php Cross Site Scripting

Posted Apr 5, 2024

Authored by Valentin Lobstein

DerbyNet version 9.0 suffers from a cross site scripting vulnerability in render-document.php.

tags | exploit, php, xss

advisories | CVE-2024-30920

SHA-256 | 6ac6f7dc08e5aa36734a4a3929671a6b16c39f23cfa800f533b74b3aa6969051

Download | Favorite | View

Seo Panel 4.7.0 Cross Site Scripting

Posted Apr 5, 2024

Authored by Arzu Demirez

Seo Panel version 4.7.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | b07abff2f49d2fe016305db3af08234302945203e601e991d4e73f2065cc5538

Download | Favorite | View

WordPress Alemha Watermarker 1.3.1 Cross Site Scripting

Posted Apr 3, 2024

Authored by Erdemstar

WordPress Alemha Watermarker plugin version 1.3.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 76321559ea1160efa358e69f808c3f1ddba706dca0a3064f8484614856b49b35

Download | Favorite | View

Computer Laboratory Management System 1.0 Cross Site Scripting

Posted Apr 2, 2024

Authored by SoSPiro

Computer Laboratory Management System version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2024-3140

SHA-256 | bf5815c0f1d58d3958bef3adb0e854fe8a2586b75a2f18b16645f513f75c79a1

Download | Favorite | View

Hospital Management System 1.0 Cross Site Scripting

Posted Apr 2, 2024

Authored by Sandeep Vishwakarma

Hospital Management System version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2024-29412

SHA-256 | b0b5ba54aa37873d47d36df07fd16afcfb575f17d07da9cdcd5d7b51d3cb12e1

Download | Favorite | View

E-Insurance 1.0 Cross Site Scripting

Posted Apr 2, 2024

Authored by Sandeep Vishwakarma

E-Insurance version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2024-29411

SHA-256 | 2406f7a2a5b0e1d7a42e0a17b9b16051a07748a1a40df70eaddfa04ad1ec98fd

Download | Favorite | View