Exploit the possiblities
Showing 1 - 25 of 15,223 RSS Feed

XSS Files

WordPress Placemarks 2.0.0 Cross Site Scripting
Posted Dec 17, 2017
Authored by Ricardo Sanchez

WordPress Placemarks plugin version 2.0.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | dcddac88c93e5de84968e542060ade62
WordPress Sagepay Server Gateway For WooCommerce 1.0.7 XSS
Posted Dec 17, 2017
Authored by Ricardo Sanchez

WordPress Sagepay Server Gateway For WooCommerce plugin version 1.0.7 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | fac5b4c598ce59a6693be082fb980570
Readymade Video Sharing Script 3.2 HTML Injection
Posted Dec 15, 2017
Authored by Ihsan Sencan

Readymade Video Sharing Script version 3.2 suffers from a html injection vulnerability.

tags | exploit, xss
advisories | CVE-2017-17649
MD5 | 9f828121974beff69a49a0bc657533bf
WordPress Wunderbar Basic 1.1.3 Cross Site Scripting
Posted Dec 15, 2017
Authored by Ricardo Sanchez

WordPress Wunderbar Basic plugin version 1.1.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 9e4156177eeba9d422aa9f62c73e8062
WordPress Pinterest Badge 1.8.0 Cross Site Scripting
Posted Dec 15, 2017
Authored by Ricardo Sanchez

WordPress Pinterest Badge plugin version 1.8.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | be0616ede646b5b6c06ff210352d9033
WordPress WooPay Inicis 1.1.3 Cross Site Scripting
Posted Dec 14, 2017
Authored by Ricardo Sanchez

WordPress WooPay Inicis plugin version 1.1.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 32b4477a51f043e97d1f2a9ea2345ddb
WordPress WordApp Mobile 2.0.3 Cross Site Scripting
Posted Dec 14, 2017
Authored by Ricardo Sanchez

WordPress WordApp Mobile App plugin version 2.0.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 8739d69174d052be36f4b526e019461b
WordPress Qiniu Cloudtuchuang 1.8 Cross Site Scripting
Posted Dec 14, 2017
Authored by Ricardo Sanchez

Wordpress Qiniu Cloudtuchuang (七牛云图床) plugin version 1.8 is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.

tags | exploit, xss
MD5 | d0e40413cd197dcbb38eecae13507c06
WordPress Crowd Ideas 1.0 Cross Site Scripting
Posted Dec 7, 2017
Authored by Ricardo Sanchez

WordPress Crowd Ideas plugin version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | c8e961d2bc8dcbabd321cac21fa33ced
WordPress Smart Marketing SMS And Newsletters Forms 1.1.1 XSS
Posted Dec 5, 2017
Authored by Ricardo Sanchez

WordPress Smart Marketing SMS and Newsletters Forms plugin version 1.1.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 107d4a628f05b49647ad046218a61ea0
WordPress WP Mailster 1.5.4.0 Cross Site Scripting
Posted Dec 5, 2017
Authored by Ricardo Sanchez

WordPress WP Mailster plugin version 1.5.4.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | b99fe238c6deceb9c0356cc5201dd253
WordPress Z-URL Preview 1.6.1 Cross Site Scripting
Posted Dec 5, 2017
Authored by Ricardo Sanchez

WordPress Z-URL Preview plugin version 1.6.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2049f91b261ca0923e0064f03667d973
WordPress Super Simple Custom CSS 1.2 Cross Site Scripting
Posted Dec 5, 2017
Authored by Ricardo Sanchez

WordPress Super Simple Custom CSS plugin version 1.2 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 91009decf866411ea09c3d6b5295a4c1
WordPress 3rd-Party Inject Results 0.2 Cross Site Scripting
Posted Dec 5, 2017
Authored by Ricardo Sanchez

WordPress 3rd-Party Inject Results plugin version 0.2 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 6d2a2496807bbfc5b9169ebcdb5486a0
OpenEMR 5.0.0 Command Injection / Cross Site Scripting
Posted Dec 4, 2017
Authored by Fikri Fadzil, Wan Ikram, Jasveer Singh | Site sec-consult.com

OpenEMR version 5.0.0 suffers from code execution and cross site scripting vulnerabilities.

tags | exploit, vulnerability, code execution, xss
MD5 | ae3d7e59300638cb1a92e34e6480a979
FortiGate SSL VPN Portal 5.x Cross Site Scripting
Posted Dec 4, 2017
Authored by Stefan Viehbock | Site sec-consult.com

FortiGate SSL VPN Portal versions 5.6.2 and below, 5.4.6 and below, 5.2.12 and below, and 5.0 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-14186
MD5 | 326f6888433930a05fa0eaf4edd6db42
MistServer 2.12 Cross Site Scripting
Posted Dec 1, 2017
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

MistServer version 2.12 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-16884
MD5 | 7b7d57cb59056ac8a438058f6d3380cf
Ubuntu Security Notice USN-3477-3
Posted Dec 1, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3477-3 - USN-3477-1 fixed vulnerabilities in Firefox. The update introduced various minor regressions. This update fixes the problems. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, read uninitialized memory, obtain sensitive information, bypass same-origin restrictions, bypass CSP protections, bypass mixed content blocking, spoof the addressbar, or execute arbitrary code. It was discovered that javascript: URLs pasted in to the addressbar would be executed instead of being blocked in some circumstances. If a user were tricked in to copying a specially crafted URL in to the addressbar, an attacker could potentially exploit this to conduct cross-site scripting attacks. It was discovered that exported bookmarks do not strip script elements from user-supplied tags. If a user were tricked in to adding specially crafted tags to bookmarks, exporting them and then opening the resulting HTML file, an attacker could potentially exploit this to conduct cross-site scripting attacks. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, spoof, javascript, vulnerability, xss
systems | linux, ubuntu
advisories | CVE-2017-7828, CVE-2017-7830, CVE-2017-7831, CVE-2017-7832, CVE-2017-7833, CVE-2017-7834, CVE-2017-7835, CVE-2017-7837, CVE-2017-7838, CVE-2017-7839, CVE-2017-7840, CVE-2017-7842
MD5 | 998ce8623ace567ce271665c533d0819
ZKTeco ZKTime Web 2.0.1.12280 Cross Site Scripting
Posted Nov 30, 2017
Authored by Himanshu Mehta

ZKTeco ZKTime Web version 2.0.1.12280 suffers from a cross site scripting vulnerability.

tags | exploit, web, xss
advisories | CVE-2017-17057
MD5 | 291cec77b877a2a698643e15dc38c568
Ubuntu Security Notice USN-3477-2
Posted Nov 27, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3477-2 - USN-3477-1 fixed vulnerabilities in Firefox. The update caused search suggestions to not be displayed when performing Google searches from the search bar. This update fixes the problem. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, read uninitialized memory, obtain sensitive information, bypass same-origin restrictions, bypass CSP protections, bypass mixed content blocking, spoof the addressbar, or execute arbitrary code. It was discovered that javascript: URLs pasted in to the addressbar would be executed instead of being blocked in some circumstances. If a user were tricked in to copying a specially crafted URL in to the addressbar, an attacker could potentially exploit this to conduct cross-site scripting attacks. It was discovered that exported bookmarks do not strip script elements from user-supplied tags. If a user were tricked in to adding specially crafted tags to bookmarks, exporting them and then opening the resulting HTML file, an attacker could potentially exploit this to conduct cross-site scripting attacks. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, spoof, javascript, vulnerability, xss
systems | linux, ubuntu
advisories | CVE-2017-7828, CVE-2017-7830, CVE-2017-7831, CVE-2017-7832, CVE-2017-7833, CVE-2017-7834, CVE-2017-7835, CVE-2017-7837, CVE-2017-7838, CVE-2017-7839, CVE-2017-7840, CVE-2017-7842
MD5 | 6cdcaf4a995ce8dd8f0d4dc8e6b43d6b
CMS Made Simple 2.1.6 Cross Site Scripting / Template Injection
Posted Nov 27, 2017
Authored by Ziyahan Albeniz

CMS Made Simple version 2.1.6 suffers from cross site scripting and server-side template injection vulnerabilities.

tags | advisory, vulnerability, xss
advisories | CVE-2017-16783
MD5 | b8c203964a0c308b507bd6d8429e5ab3
CommuniGatePro 6.1.16 Cross Site Scripting
Posted Nov 23, 2017
Authored by Boumediene Kaddour

CommuniGatePro version 6.1.16 suffers from multiple stored cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2017-16962
MD5 | 04b4d99355b9137c616c8339f6cc48e9
MyTy 5.1.7 Cross Site Scripting
Posted Nov 22, 2017
Authored by Nicolas Heiniger

MyTy versions 5.0.4 through 5.1.7 suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | a008300f781650c5d57bf9ca63e816ae
WordPress Breezing Forms 1.2.7.42 Cross Site Scripting
Posted Nov 22, 2017
Authored by Ricardo Sanchez

WordPress Breezing Forms plugin version 1.2.7.42 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 71ad89156154be21821d8078a60ea50f
WordPress Yoast SEO Cross Site Scripting
Posted Nov 22, 2017
Authored by Dimopoulos Elias

WordPress Yoast SEO plugin versions prior to 5.8.0 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-16842
MD5 | 978116d3607766290b34a2d7a3aed0e2
Page 1 of 609
Back12345Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    4 Files
  • 11
    Dec 11th
    41 Files
  • 12
    Dec 12th
    44 Files
  • 13
    Dec 13th
    25 Files
  • 14
    Dec 14th
    15 Files
  • 15
    Dec 15th
    28 Files
  • 16
    Dec 16th
    3 Files
  • 17
    Dec 17th
    13 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close