Twenty Year Anniversary
Showing 76 - 100 of 15,737 RSS Feed

XSS Files

BigTree CMS 4.2.23 Cross Site Scripting
Posted Oct 14, 2018
Authored by Ismail Tasdelen

BigTree CMS version 4.2.23 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-18308
MD5 | f5728a98b540a2a6b03552d9a45a29fc
D-Link DSL-2640T Cross Site Scripting
Posted Oct 12, 2018
Authored by Anas Falhi

D-Link DSL-2640T suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | ab8474f010ecad27ec56a4787f98cd86
SugarCRM 6.5.26 Cross Site Scripting
Posted Oct 12, 2018
Authored by Purplemet Security

SugarCRM version 6.5.26 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-17784
MD5 | b82076c84e312cbe1ebc4557763ad9cb
Teltonika RUT9XX Reflected Cross Site Scripting
Posted Oct 12, 2018
Authored by David Gnedt | Site sba-research.org

Teltonika RUT9XX routers with firmware before 00.05.01.1 are prone to cross site scripting vulnerabilities in hotspotlogin.cgi due to insufficient user input sanitization.

tags | exploit, cgi, vulnerability, xss
advisories | CVE-2018-17533
MD5 | ff8c8d3835518737f0d6871a0c139c16
Cockpit CMS CSRF / XSS / Path Traversal
Posted Oct 12, 2018
Authored by Simon Uvarov

Cockpit CMS suffers from cross site request forgery, cross site scripting, and traversal vulnerabilities. Version 0.6.2 should address these issues.

tags | exploit, vulnerability, xss, file inclusion, csrf
advisories | CVE-2018-15538, CVE-2018-15539, CVE-2018-15540
MD5 | 7d2a860626777079a63681bdf22080cc
CAMALEON CMS 2.4 Cross Site Scripting
Posted Oct 12, 2018
Authored by Ismail Tasdelen

CAMALEON CMS version 2.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2256a3e70ff20389c0c2c15bfdefc721
LUYA CMS 1.0.12 Cross Site Scripting
Posted Oct 12, 2018
Authored by Ismail Tasdelen

LUYA CMS version 1.0.12 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e148edd591728b4ea0f6246c077f8c1f
WAGO 750-881 01.09.18 Cross Site Scripting
Posted Oct 11, 2018
Authored by SecuNinja

WAGO 750-881 01.09.18 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 814dfa42f88d789a7edc744da3f17025
Ubuntu Security Notice USN-3781-2
Posted Oct 10, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3781-2 - USN-3781-1 fixed vulnerabilities in WebKitGTK+. The updated package was missing some header files, preventing certain applications from building. This update fixes the problem. A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution. Various other issues were also addressed.

tags | advisory, remote, web, denial of service, arbitrary, javascript, vulnerability, code execution, xss
systems | linux, ubuntu
MD5 | a6bc4a13b0557d357067efa2bbc88f09
Responsive Filemanager 9.8.1 Cross Site Scripting
Posted Oct 9, 2018
Authored by Yavuz Atlas

Responsive Filemanager version 9.8.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-18062
MD5 | e57866e9ceecaf92811e3d760b50d6b7
NPLUG Wireless Repeater 1.0.0.14 CSRF / XSS / Authentication Bypass
Posted Oct 9, 2018
Authored by Patrick Costa

NPLUG Wireless Repeater version 1.0.0.14 suffers from authentication bypass, cross site request forgery, and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, bypass, csrf
advisories | CVE-2018-12455, CVE-2018-12456, CVE-2018-17337
MD5 | 7f73899dfe3e36b811002665eba81f83
Sitepress Multilingual 3.6.3 Cross Site Scripting
Posted Oct 9, 2018
Authored by Rahul Pratap Singh

Sitepress Multilingual versions 3.6.3 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 18437253338016d90e6dc70ab2d8bc8f
Chamilo LMS 1.11.8 firstname Cross Site Scripting
Posted Oct 8, 2018
Authored by Cakes

Chamilo LMS version 1.11.8 suffers from a cross site scripting vulnerability in the firstname variable.

tags | exploit, xss
MD5 | 02b3da9e6fdc383ab9250e6469f7fa48
Claromentis Discuss 1.2.1 Cross Site Scripting
Posted Oct 5, 2018
Authored by David Vargas

Claromentis Discuss module version 1.2.1 suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-15903
MD5 | f8fbe622595d04e4b37fac94f93ea9d0
Chamilo LMS 1.11.8 Cross Site Scripting
Posted Oct 5, 2018
Authored by Cakes

Chamilo LMS version 1.11.8 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 34337fc4361af47aecbca2e1795141fc
D-Link Central WiFiManager Software Controller Code Execution / XSS
Posted Oct 4, 2018
Authored by Core Security Technologies, Julian Munoz | Site coresecurity.com

D-Link Central WiFiManager Software Controller suffers from hard-coded credential, code execution, and cross site scripting vulnerabilities. Version 1.03 is affected.

tags | exploit, vulnerability, code execution, xss
advisories | CVE-2018-17440, CVE-2018-17441, CVE-2018-17442, CVE-2018-17443
MD5 | d17784050df3ae3fb82535964cf33f9c
WordPress Pie Register 3.0.15 Cross Site Scripting
Posted Oct 4, 2018
Authored by Socket_0x03

WordPress Pie Register plugin version 3.0.15 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 05a949489a97cb1df52d1d448cfe7a28
Ubuntu Security Notice USN-3781-1
Posted Oct 3, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3781-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss
systems | linux, ubuntu
advisories | CVE-2018-4191, CVE-2018-4209, CVE-2018-4299, CVE-2018-4312, CVE-2018-4317, CVE-2018-4328
MD5 | b9204d5224fba5ea1f9e172cb10b6dda
PTC ThingWorx Password Disclosure / Cross Site Scripting
Posted Oct 3, 2018
Authored by M. Tomaselli | Site sec-consult.com

PTC ThingWorx suffers from cross site scripting and password disclosure vulnerabilities. Versions affected include 6.5 through 7.4, 8.0.x, 8.1.x, and 8.2.x.

tags | advisory, vulnerability, xss
advisories | CVE-2018-17216, CVE-2018-17217, CVE-2018-17218
MD5 | cf3dfdaedc433d702cffb055aaf2357a
Coaster CMS 5.5.0 Cross Site Scripting
Posted Oct 3, 2018
Authored by Ismail Tasdelen

Coaster CMS version 5.5.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-17876
MD5 | 14daa87959cbcc25a19b464f0b4a9c33
Billion ADSL Router 400G 20151105641 Cross Site Scripting
Posted Oct 1, 2018
Authored by Cakes

Billion ADSL Router 400G 20151105641 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2826008e75d4ff2ccebcf0b06ed283d0
WUZHICMS 2.0 Cross Site Scripting
Posted Oct 1, 2018
Authored by Renzi

WUZHICMS version 2.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-17832
MD5 | f2315ff642978e331f8ad940643f802e
Fork CMS 5.4.0 Cross Site Scripting / HTML Injection
Posted Oct 1, 2018
Authored by Ismail Tasdelen

In the 5.4.0 version of the Fork CMS software, HTML Injection and Stored XSS vulnerabilities were discovered via the /backend/ajax URI.

tags | exploit, vulnerability, xss
advisories | CVE-2018-17595
MD5 | 5e01912316465b19e47ec29e5da1b835
WordPress PDF And Print 2.0.2 Cross Site Scripting
Posted Sep 30, 2018
Authored by Robin Trost

WordPress PDF and Print plugin version 2.0.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | c9cf628f259127af1f8831690b987e4d
Airties AIR5750 1.0.0.18 Cross Site Scripting
Posted Sep 29, 2018
Authored by Ismail Tasdelen

A cross site scripting vulnerability has been discovered in the AIR5750 modem of the AirTies manufacturer. AirTies Air 5750 devices have XSS via the top.html productboardtype parameter.

tags | exploit, xss
advisories | CVE-2018-17587
MD5 | 191eadb771bfc0e5afaae48f27fcce0d
Page 4 of 630
Back23456Next

File Archive:

December 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    11 Files
  • 2
    Dec 2nd
    1 Files
  • 3
    Dec 3rd
    18 Files
  • 4
    Dec 4th
    40 Files
  • 5
    Dec 5th
    16 Files
  • 6
    Dec 6th
    50 Files
  • 7
    Dec 7th
    12 Files
  • 8
    Dec 8th
    1 Files
  • 9
    Dec 9th
    1 Files
  • 10
    Dec 10th
    15 Files
  • 11
    Dec 11th
    30 Files
  • 12
    Dec 12th
    25 Files
  • 13
    Dec 13th
    15 Files
  • 14
    Dec 14th
    14 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close