what you don't know can hurt you
Showing 76 - 100 of 16,196 RSS Feed

XSS Files

OpenProject 10.0.1 / 9.0.3 Cross Site Scripting
Posted Oct 15, 2019
Authored by David Haintz | Site sec-consult.com

OpenProject versions 9.0.3 and below and 10.0.1 and below suffer from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2019-17092
MD5 | 9337bb16250afaa04c0cf42e5bcc7729
ASUS RT-N10+ 2.0.3.4 CSRF / XSS / Command Execution
Posted Oct 14, 2019
Authored by Matheus Vrech

ASUS RT-N10+ with firmware version 2.0.3.4 suffers from cross site request forgery and cross site scripting vulnerabilities that can assist with achieving command execution.

tags | exploit, vulnerability, xss, csrf
MD5 | 413b65790cd54119cea3da7c110a4c83
Express Invoice 7.12 Cross Site Scripting
Posted Oct 14, 2019
Authored by Debashis Pal

Express Invoice version 7.12 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | a508267204d0e7f0085a1924b7c52caf
Open-Xchange OX App Suite SSRF / XSS / Information Disclosure / Access Controls
Posted Oct 14, 2019
Authored by MantiS, Martin Heiland, Michael Medvedev, Manas Gupta, hd7exploit

Various Open-Xchange OX App Suite versions suffer from server-side request forgery, cross site scripting, information disclosure, and improper access control vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure
advisories | CVE-2019-14225, CVE-2019-14226, CVE-2019-14227
MD5 | bfbf59df0658a611dc03b03bbb86a669
Openfire 4.4.1 Cross Site Scripting
Posted Oct 11, 2019
Authored by Daniel Bishtawi | Site netsparker.com

Openfire version 4.4.1 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 6df9e588043a5bbb075dc74e95e760fb
SugarCRM 9.0.1 Cross Site Scripting
Posted Oct 11, 2019
Authored by EgiX | Site karmainsecurity.com

SugarCRM versions 9.0.1 and below suffer from multiple reflective cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | a36ef60c0e8d40f91c64cce4c99d669a
Red Hat Security Advisory 2019-3024-01
Posted Oct 11, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3024-01 - The ovirt-web-ui package provides the web interface for Red Hat Virtualization. Issues addressed include code execution, cross site scripting, and denial of service vulnerabilities.

tags | advisory, web, denial of service, vulnerability, code execution, xss
systems | linux, redhat
advisories | CVE-2019-10744, CVE-2019-11358, CVE-2019-8331
MD5 | 34d270987353fef45ff226704c50a15d
Red Hat Security Advisory 2019-3023-01
Posted Oct 11, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3023-01 - The ovirt-engine-ui-extensions package contains UI plugins that provide various extensions to the oVirt administration UI. Issues addressed include code execution, cross site scripting, and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution, xss
systems | linux, redhat
advisories | CVE-2016-10735, CVE-2018-20676, CVE-2018-20677, CVE-2019-11358, CVE-2019-8331
MD5 | ead5ab3cdfaaa8cea7bbae101c52ab4a
Intelbras Router WRN150 1.0.18 Cross Site Scripting
Posted Oct 11, 2019
Authored by Prof. Joas Antonio

Intelbras Router WRN150 version 1.0.18 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 184adef8a546b8c86864a291da61497c
Ubuntu Security Notice USN-4151-1
Posted Oct 9, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4151-1 - It was discovered that Python incorrectly parsed certain email addresses. A remote attacker could possibly use this issue to trick Python applications into accepting email addresses that should be denied. It was discovered that the Python documentation XML-RPC server incorrectly handled certain fields. A remote attacker could use this issue to execute a cross-site scripting attack.

tags | advisory, remote, xss, python
systems | linux, ubuntu
advisories | CVE-2019-16056, CVE-2019-16935
MD5 | 3ec0bcf4cec5b2ef6699c80ba3fd0a8f
Apple Security Advisory 2019-10-07-4
Posted Oct 8, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-10-07-4 - iCloud for Windows 7.14 is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.

tags | advisory, overflow, vulnerability, code execution, xss
systems | windows, apple, 7
advisories | CVE-2019-8625, CVE-2019-8707, CVE-2019-8719, CVE-2019-8726, CVE-2019-8733, CVE-2019-8735, CVE-2019-8745, CVE-2019-8763
MD5 | 674430b600662e944210bc20e841afd7
Apple Security Advisory 2019-10-07-3
Posted Oct 8, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-10-07-3 - iCloud for Windows 10.7 is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.

tags | advisory, overflow, vulnerability, code execution, xss
systems | windows, apple
advisories | CVE-2019-8625, CVE-2019-8707, CVE-2019-8719, CVE-2019-8726, CVE-2019-8733, CVE-2019-8735, CVE-2019-8745, CVE-2019-8763
MD5 | 60950df4e7126c0b4c002000d0054239
Apple Security Advisory 2019-10-07-2
Posted Oct 8, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-10-07-2 - iTunes for Windows 12.10.1 is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.

tags | advisory, overflow, vulnerability, code execution, xss
systems | windows, apple
advisories | CVE-2019-8625, CVE-2019-8707, CVE-2019-8719, CVE-2019-8720, CVE-2019-8726, CVE-2019-8733, CVE-2019-8735, CVE-2019-8745, CVE-2019-8763
MD5 | 9afe24ba991364697b29be8710f3f4af
Subrion 4.2.1 Cross Site Scripting
Posted Oct 7, 2019
Authored by Min Ko Ko

Subrion version 4.2.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-17225
MD5 | c95c59032de41c4009cd527fba9a57fb
Thailand Union Library Management 6.2 SQL Injection / XSS
Posted Oct 7, 2019
Authored by KingSkrupellos

Thailand Union Library Management version 6.2 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 72bf47bf8eaab7c228ce951378e6c581
Rocket.Chat Cross Site Scripting
Posted Oct 1, 2019
Authored by 3H34N

Rocket.Chat versions prior to 2.1.0 suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 36f555f2af81fce69ddbe041edf0ab91
WebKit Cached Pages Universal Cross Site Scripting
Posted Oct 1, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from a universal cross site scripting vulnerability using cached pages.

tags | exploit, xss
MD5 | feb75421e7efde640b47418cf364c390
WebKit WebCore::command Universal Cross Site Scripting
Posted Oct 1, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from a universal cross site scripting vulnerability in WebCore::command.

tags | exploit, xss
MD5 | 9f13592add861df962bac226dc591317
WebKit URI / Synchronous Page Loads Universal Cross Site Scripting
Posted Oct 1, 2019
Authored by Google Security Research, Glazvunov

WebKit has an issue where URI and synchronous page loads are susceptible to a universal cross site scripting vulnerability.

tags | exploit, xss
MD5 | 31dbae9bdb725280046f9290bd4c6460
DotNetNuke Cross Site Scripting
Posted Oct 1, 2019
Authored by MaYaSeVeN

DotNetNuke versions prior to 9.4.0 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-12562
MD5 | 5e87d37cd67d28292a61a476162e916b
thesystem 1.0 Cross Site Scripting
Posted Sep 30, 2019
Authored by Anil Baran Yelken

thesystem version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 3db6e610e74c033755ff1973ec6f045e
Akaunting 1.3.17 Cross Site Scripting
Posted Sep 29, 2019
Authored by Rudra Sarkar

Akaunting versions 1.0.0 through 1.3.17 suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 791a391fc2654ecbb529f831ea0d5c43
GFI Kerio Control 9.3.0 Cross Site Scripting
Posted Sep 29, 2019
Authored by Michael Eissele

GFI Kerio Control firewall version 9.3.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-16414
MD5 | 8549de7909e0e05df7576a5c6847a0f4
Apple Security Advisory 2019-9-26-4
Posted Sep 27, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-9-26-4 - Safari 13 addresses a cross site scripting vulnerability.

tags | advisory, xss
systems | apple
advisories | CVE-2019-8674
MD5 | fca42db4b074eaacf2cb03d37a8f31da
Apple Security Advisory 2019-9-26-3
Posted Sep 27, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-9-26-3 - iOS 13 addresses code execution and cross site scripting vulnerabilities.

tags | advisory, vulnerability, code execution, xss
systems | apple, ios
advisories | CVE-2019-8641, CVE-2019-8674, CVE-2019-8704, CVE-2019-8705, CVE-2019-8711, CVE-2019-8727, CVE-2019-8731, CVE-2019-8742, CVE-2019-8760
MD5 | c358956bbe7689e79d6ed874d77027cc
Page 4 of 648
Back23456Next

File Archive:

December 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    1 Files
  • 2
    Dec 2nd
    16 Files
  • 3
    Dec 3rd
    17 Files
  • 4
    Dec 4th
    23 Files
  • 5
    Dec 5th
    11 Files
  • 6
    Dec 6th
    9 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close