seeing is believing
Showing 51 - 75 of 15,085 RSS Feed

XSS Files

RSA Products Cross Site Scripting
Posted Jun 9, 2017
Authored by Lukasz Plonka | Site emc.com

RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance and RSA IMG contain fixes for multiple cross site scripting vulnerabilities that could potentially be exploited by malicious users to compromise an affected system. Affected include RSA Identity Governance and Lifecycle versions 7.0.1, 7.0.2, RSA Via Lifecycle and Governance version 7.0, and RSA Identity Management and Governance (RSA IMG) versions 6.9.1.

tags | advisory, vulnerability, xss
advisories | CVE-2017-5003, CVE-2017-5004
MD5 | 98a570e6a33d7b8e4ff5e31ce8535961
HP Security Bulletin HPESBHF03730 2
Posted Jun 9, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBHF03730 2 - Potential security vulnerabilities have been identified in HPE Aruba ClearPass Policy Manager. The vulnerabilities could be remotely exploited to allow access restriction bypass, arbitrary command execution, cross site scripting (XSS), escalation of privilege and disclosure of information. Revision 2 of this advisory.

tags | advisory, arbitrary, vulnerability, xss
advisories | CVE-2017-5647, CVE-2017-5824, CVE-2017-5825, CVE-2017-5826, CVE-2017-5827, CVE-2017-5828, CVE-2017-5829
MD5 | dec20ed784546f6a36fea6b00a9a6443
Craft CMS 2.6 Cross Site Scripting / File Upload
Posted Jun 7, 2017
Authored by Ahsan Tahir

Craft CMS version 2.6 suffers from cross site scripting and remote file upload vulnerabilities.

tags | exploit, remote, vulnerability, xss, file upload
MD5 | b6aa5cdb750e8030003b4b882082459e
Perch CMS 3.0.3 Cross Site Scripting / File Upload
Posted Jun 7, 2017
Authored by SaifAllah benMassaoud | Site vulnerability-lab.com

Perch CMS version 3.0.3 suffers from cross site scripting and remote file upload vulnerabilities.

tags | exploit, remote, vulnerability, xss, file upload
MD5 | 9fd148d51b3b6699cac026fb23c0013f
GravCMS Core 1.4.2 Cross Site Scripting
Posted Jun 7, 2017
Authored by Ahsan Tahir

GravCMS Core version 1.4.2 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 7923e66314d07f36647036f7990b989b
Sophos Cyberoam Cross Site Scripting
Posted Jun 7, 2017
Authored by Bhadresh Patel

Sophos Cyberoam with firmware versions 10.6.4 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2016-9834
MD5 | 45a09f8eebd93330a1758fa0ea841c81
Robert 0.5 CSRF / XSS / Directory Traversal / SQL Injection
Posted Jun 7, 2017
Authored by Cyril Vallicari

Robert version 0.5 suffers from cross site request forgery, cross site scripting, remote SQL injection, and directory traversal vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, file inclusion, csrf
MD5 | cfd060cdd873a90420373f8cc4f97108
Peplink 7.0.0-build1904 XSS / CSRF / SQL Injection / File Deletion
Posted Jun 5, 2017
Authored by Eric Sesterhenn, Claus Overbeck

Peplink version 7.0.0-build1904 suffers from cross site request forgery, cross site scripting, file deletion, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
advisories | CVE-2017-8835, CVE-2017-8836, CVE-2017-8837, CVE-2017-8838, CVE-2017-8839, CVE-2017-8840, CVE-2017-8841
MD5 | 36d56c06b635fb1596ea43530b5b607e
WordPress No External Links 3.5.17 Cross Site Scripting
Posted Jun 2, 2017
Authored by DefenseCode, Neven Biruski

WordPress No External Links plugin versions 3.5.17 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | ee7fddf32f860d0d45b3a0bffdf6d2e6
WordPress Tribulant Newsletters 4.6.4.2 XSS / File Disclosure
Posted Jun 2, 2017
Authored by DefenseCode, Neven Biruski

WordPress Tribulant Newsletters plugin versions 4.6.4.2 and below suffer from cross site scripting and file disclosure vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | b670de76da3bd53baa8500a2963d55cf
Debian Security Advisory 3870-1
Posted Jun 1, 2017
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3870-1 - Several vulnerabilities were discovered in wordpress, a web blogging tool. They would allow remote attackers to force password resets, and perform various cross-site scripting and cross-site request forgery attacks.

tags | advisory, remote, web, vulnerability, xss, csrf
systems | linux, debian
advisories | CVE-2017-8295, CVE-2017-9061, CVE-2017-9062, CVE-2017-9063, CVE-2017-9064, CVE-2017-9065
MD5 | 34393add3f849a2fcd80e1d68c82c1e4
WebKit CachedFrameBase::restore Universal Cross Site Scripting
Posted Jun 1, 2017
Authored by Google Security Research, lokihardt

WebKit suffers from a universal cross site scripting vulnerability in CachedFrameBase::restore.

tags | exploit, xss
MD5 | 8ee769d64010284b4721a43aed2c95de
WebKit CachedFrame Universal Cross Site Scripting
Posted Jun 1, 2017
Authored by Google Security Research, lokihardt

WebKit CachedFrame does not detach openers allowing for a universal cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-2528
MD5 | 43a1c75b3576aaf06b38a05d7d55213c
WebKit Document::prepareForDestruction / CachedFrame Universal XSS
Posted Jun 1, 2017
Authored by Google Security Research, lokihardt

WebKit suffers from a universal cross site scripting vulnerability via Document::prepareForDestruction and CachedFrame.

tags | exploit, xss
MD5 | 78bf11e8b6ba2d240530d29aae957ca6
WordPress Simple Slideshow Manager 2.2 Cross Site Scripting
Posted May 31, 2017
Authored by DefenseCode, Neven Biruski

WordPress Simple Slideshow Manager plugin versions 2.2 and below suffer from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 6cafb010fb20043a5898706c8f032a6d
KEMP LoadMaster 7.135.0.13245 XSS / Code Execution
Posted May 31, 2017
Site securiteam.com

KEMP LoadMaster version 7.135.0.13245 suffers from persistent cross site scripting and remote code execution vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss
MD5 | 05f5ea97f61f9b6d72385ba9076f9126
Ubuntu Security Notice USN-3303-1
Posted May 30, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3303-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss
systems | linux, ubuntu
advisories | CVE-2017-2496, CVE-2017-2510, CVE-2017-2539
MD5 | 5bef6c3431fc241e7202efca881ef4de
Ampache 3.8.2 Cross Site Scripting
Posted May 29, 2017
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Ampache version 3.8.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b6b93c3f9643a0cf897ff98afca7bb99
WordPress AffiliateWP 2.0.8 Cross Site Scripting
Posted May 27, 2017
Authored by DefenseCode, Neven Biruski

WordPress AffiliateWP plugin versions 2.0.8 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | c6a3f59b74239220d0fd9a314f2789bb
WordPress All In One Schema.org Rich Snippets 1.4.1 XSS
Posted May 27, 2017
Authored by DefenseCode, Neven Biruski

WordPress All In One Schema.org Rich Snippets plugin versions 1.4.1 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 9483a5c6080370a01f53f222fa918972
Aries QWR-1104 Wireless-N Cross Site Scripting
Posted May 27, 2017
Authored by Touhid M.Shaikh

Aries QWR-1104 Wireless-N router suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | fdea6d042260382680f451432b9be930
Sunell IPCAMERA IPR54/14AKDN(II)/13 Cross Site Scripting
Posted May 27, 2017
Authored by Stephan Sekula

Sunell IPCAMERA IPR54/14AKDN(II)/13 suffers from a reflective cross site scripting vulnerability.

tags | exploit, xss
MD5 | cac4fb3c8a0231bc24e080283859ba02
Sunell IPR54/14AKDN(II)/13 Cross Site Scripting
Posted May 27, 2017
Authored by Stephan Sekula

Sunell IPR54/14AKDN(II)/13 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 19f2fab056e17a9b6e6e6ff2e9647e31
HP Security Bulletin HPESBHF03730 1
Posted May 27, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBHF03730 1 - Potential security vulnerabilities have been identified in HPE Aruba ClearPass Policy Manager. The vulnerabilities could be remotely exploited to allow access restriction bypass, arbitrary command execution, cross site scripting (XSS), escalation of privilege and disclosure of information. Revision 1 of this advisory.

tags | advisory, arbitrary, vulnerability, xss
advisories | CVE-2017-5647, CVE-2017-5824, CVE-2017-5825, CVE-2017-5826, CVE-2017-5827, CVE-2017-5828, CVE-2017-5829
MD5 | 400a1bf074861dc3b0aaf57d0d05eeb7
WebKit Editor::Command::execute Universal Cross Site Scripting
Posted May 25, 2017
Authored by Google Security Research, lokihardt

WebKit suffers from a universal cross site scripting vulnerability via Editor::Command::execute.

tags | exploit, xss
advisories | CVE-2017-2504
MD5 | c7bf3fd77a7740bee8feaf0d04286677
Page 3 of 604
Back12345Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    2 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    28 Files
  • 26
    Jul 26th
    2 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close