Twenty Year Anniversary
Showing 101 - 125 of 15,618 RSS Feed

XSS Files

WordPress Tooltipy 5.0 Cross Site Scripting
Posted Jun 12, 2018
Authored by Tom Adams

WordPress Tooltipy plugin version 5.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b6c5e7774fb62ebf84c690fa5e490b74
Canon PrintMe EFI Cross Site Scripting
Posted Jun 12, 2018
Authored by Huy Kha

Canon PrintMe EFI suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-12111
MD5 | 1b32c8d5e91282bc9f3a9fa12654d6f4
WordPress Ultimate Form Builder Lite 1.3.7 XSS / SQL Injection
Posted Jun 12, 2018
Authored by DefenseCode, Neven Biruski

WordPress Ultimate Form Builder Lite versions 1.3.7 and below suffer from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 4147f9e58f55a85f9e33e394450a0f3a
Dimofinf CMS 3.0.0 Cross Site Scripting
Posted Jun 12, 2018
Authored by Renzi

Dimofinf CMS version 3.0.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-12094
MD5 | 884af4ff41aa0f5005c70242476ed52a
OEcms 3.1 Cross Site Scripting
Posted Jun 12, 2018
Authored by Renzi

OEcms version 3.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-12095
MD5 | 2e0a4d802f2a1f69263f125fb4983364
userSpice 4.3.24 X-Forwarded-For Cross Site Scripting
Posted Jun 11, 2018
Authored by Dolev Farhi

userSpice version 4.3.24 suffers from an X-Forwarded-For cross site scripting vulnerability.

tags | exploit, xss
MD5 | f90ee22ae03760a89717e5646e6d5f92
SensioLabs Symfony 3.3.6 Cross Site Scripting
Posted Jun 9, 2018
Authored by HaMM0nz

SensioLabs Symfony version 3.3.6 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-12040
MD5 | c2146dcabb8e4fbb8941ce5b5e3b88e5
OX App Suite 7.8.4 XSS / Privilege Management / SSRF / Traversal
Posted Jun 8, 2018
Authored by Martin Heiland

OX App Suite versions 7.8.4 and below suffer from cross site scripting, improper privilege management, content spoofing, server-side request forgery, and path traversal vulnerabilities.

tags | exploit, spoof, vulnerability, xss
advisories | CVE-2017-17062, CVE-2018-5751, CVE-2018-5752, CVE-2018-5753, CVE-2018-5754, CVE-2018-5755, CVE-2018-5756
MD5 | 17c9e0a5fb461f27f24ee61b974f87d2
Debian Security Advisory 4219-1
Posted Jun 8, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4219-1 - Several vulnerabilities were discovered in jruby, a Java implementation of the Ruby programming language. They would allow an attacker to use specially crafted gem files to mount cross-site scripting attacks, cause denial of service through an infinite loop, write arbitrary files, or run malicious code.

tags | advisory, java, denial of service, arbitrary, vulnerability, xss, ruby
systems | linux, debian
advisories | CVE-2018-1000073, CVE-2018-1000074, CVE-2018-1000075, CVE-2018-1000076, CVE-2018-1000077, CVE-2018-1000078, CVE-2018-1000079
MD5 | 7d3ba91bea7cc4af627f93c7f93e2120
Joomla 2.4.0 Gridbox Cross Site Scripting
Posted Jun 8, 2018
Authored by Yavuz Atlas

Joomla versions 2.4.0 and below suffer from a cross site scripting vulnerability in the Gridbox extension.

tags | exploit, xss
advisories | CVE-2018-11690
MD5 | a67e61410dc53b192fa83ce0ba67d2d0
ClassLink OneClick Browser Extension / Agent Universal XSS / Remote Code Execution
Posted Jun 8, 2018
Authored by EdTech Secure

The ClassLink OneClick browser extension and the ClassLink Agent are vulnerable to universal cross site scripting and remote code execution.

tags | exploit, remote, code execution, xss
MD5 | e8835af6f7679093a0b4696ac326601b
ESPN Cross Site Scripting
Posted Jun 8, 2018
Authored by Ismail Doe

ESPN's CDN suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | cb6c8b895a34118ac66e8eb571793e21
Konami.com Cross Site Scripting
Posted Jun 7, 2018
Authored by Ismail Tasdelen

Konami.com suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 9c435a5c3770a083fd4dfe5f11050cde
WordPress Contact Form Maker 1.12.20 XSS / CSRF / SQL Injection
Posted Jun 7, 2018
Authored by DefenseCode, Neven Biruski

WordPress Contact Form Maker plugin versions 1.12.20 and below suffer from cross site scripting, cross site request forgery, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | d08badfbc380bef4839f1e6faaf47b7e
WordPress Form Maker 1.12.24 XSS / CSRF / SQL Injection
Posted Jun 7, 2018
Authored by DefenseCode, Neven Biruski

WordPress Form Maker plugin versions 1.12.24 and below suffer from cross site scripting, cross site request forgery, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | 222b8b4c330c800a4f881ec057b14e4f
Ignite Realtime Openfire 3.7.1 Cross Site Scripting
Posted Jun 5, 2018
Authored by Yavuz Atlas

Ignite Realtime Openfire version 3.7.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-11688
MD5 | 2e97079f3a9375b315b0242e3016270e
Pagekit Cross Site Scripting Code Generator
Posted Jun 5, 2018
Authored by DEEPIN2

Pagekit versions prior to 1.0.13 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-11564
MD5 | e0229463cc0d33dc6ba55902196ace72
MyBB Recent Threads 1.0 Cross Site Scripting
Posted Jun 5, 2018
Authored by 0xB9

MyBB Recent Threads plugin version 1.0 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-11715
MD5 | a323305800c40845994bfaf49097fa4e
EMS Master Calendar Cross Site Scripting
Posted Jun 5, 2018
Authored by Chris Barretto

EMS Master Calendar versions prior to 8.0.0.20180520 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-11628
MD5 | 70ecdc8374901418dbc51401373c3955
Debian Security Advisory 4215-1
Posted Jun 2, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4215-1 - Man Yue Mo, Lars Krapf and Pierre Ernst discovered that Batik, a toolkit for processing SVG images, did not properly validate its input. This would allow an attacker to cause a denial-of-service, mount cross-site scripting attacks, or access restricted files on the server.

tags | advisory, xss
systems | linux, debian
advisories | CVE-2017-5662, CVE-2018-8013
MD5 | 3993e80415ade99982b86b799f5588c4
Quest KACE System Management Appliance 8.0 (Build 8.0.318) XSS / Traversal / Code Execution / SQL Injection
Posted May 31, 2018
Authored by Core Security Technologies, Leandro Barragan, Guido Leo | Site coresecurity.com

Quest KACE System Management Appliance version 8.0 (Build 8.0.318) suffers from code execution, cross site scripting, path traversal, remote SQL injection, and various other vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss, sql injection
advisories | CVE-2018-11132, CVE-2018-11133, CVE-2018-11134, CVE-2018-11135, CVE-2018-11136, CVE-2018-11137, CVE-2018-11138, CVE-2018-11139, CVE-2018-11140, CVE-2018-11141, CVE-2018-11142
MD5 | 40e0fc0c417670b30bccdf9097a9a547
PageKit CMS 1.0.13 Cross Site Scripting
Posted May 31, 2018
Authored by Jason Perry

PageKit CMS version 1.0.13 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-11564
MD5 | f546c86af37c8ecf22a4ff6e67b28d48
New STAR 2.1 Cross Site Scripting / SQL Injection
Posted May 31, 2018
Authored by Kagan Capar

New STAR version 2.1 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | a856c03164de7ba7c99d58887aa40da0
CSV Import And Export 1.1.0 Cross Site Scripting / SQL Injection
Posted May 31, 2018
Authored by Kagan Capar

CSV Import and Export version 1.1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 387b49c32a6a09b2dbb4a8c47fbc3fad
Brother HL-L2340D / HL-L2380DW Cross Site Scripting
Posted May 31, 2018
Authored by Huy Kha

Brother HL-L2340D and HL-L2380DW suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | a576fba994d6ae7c1631a3475c0cc02c
Page 5 of 625
Back34567Next

File Archive:

September 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    1 Files
  • 2
    Sep 2nd
    3 Files
  • 3
    Sep 3rd
    15 Files
  • 4
    Sep 4th
    15 Files
  • 5
    Sep 5th
    18 Files
  • 6
    Sep 6th
    18 Files
  • 7
    Sep 7th
    15 Files
  • 8
    Sep 8th
    2 Files
  • 9
    Sep 9th
    2 Files
  • 10
    Sep 10th
    16 Files
  • 11
    Sep 11th
    17 Files
  • 12
    Sep 12th
    15 Files
  • 13
    Sep 13th
    29 Files
  • 14
    Sep 14th
    21 Files
  • 15
    Sep 15th
    3 Files
  • 16
    Sep 16th
    1 Files
  • 17
    Sep 17th
    15 Files
  • 18
    Sep 18th
    16 Files
  • 19
    Sep 19th
    29 Files
  • 20
    Sep 20th
    18 Files
  • 21
    Sep 21st
    5 Files
  • 22
    Sep 22nd
    2 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close