Browsing the "cross" Tag

Visitor Management System In PHP 1.0 Cross Site Scripting ≈ Packet Storm

September 23rd, 2020 📆 | 3387 Views ⚑

# Title: Visitor Management System in PHP 1.0 – Unauthenticated Stored XSS# Exploit Author: Rahul Ramkumar# Date: 2020-09-16# Vendor Homepage:

Tagged with:




BlackCat CMS 1.3.6 Cross Site Request Forgery ≈ Packet Storm

September 21st, 2020 📆 | 3035 Views ⚑

# Exploit Title: BlackCat CMS 1.3.6 – Cross-Site Request Forgery# Date: 2020-06-01# Exploit Author: Noth# Vendor Homepage: https://github.com/BlackCatDevelopment/BlackCatCMS# Software Link:

Tagged with:




Navy Federal Cross Site Scripting ≈ Packet Storm

September 19th, 2020 📆 | 8256 Views ⚑

Vendor————————————————-Navy Federal – (https://www.navyfederal.org/ Product————————————————-Front pubic facing application Credit————————————————-Arthrocyberhttp://arthrocyber.com/research/#finding_7 David Reyes Vulnerability Summary————————————————-The endpoint sdu.navyfederal.org/__85258014004953a3.nsf/secureUploadMain did not sanitize HTML characters.

Tagged with:




RAD SecFlow-1v SF_0290_2.3.01.26 Cross Site Scripting ≈ Packet Storm

September 15th, 2020 📆 | 1650 Views ⚑

# Exploit Title: RAD SecFlow-1v SF_0290_2.3.01.26 – Persistent Cross-Site Scripting# Date: 2020-08-31# Exploit Author: Jonatan Schor and Uriel Yochpaz# Vendor

Tagged with:




RAD SecFlow-1v SF_0290_2.3.01.26 Cross Site Request Forgery ≈ Packet Storm

September 15th, 2020 📆 | 6180 Views ⚑

# Exploit Title: RAD SecFlow-1v SF_0290_2.3.01.26 – Cross-Site Request Forgery (Reboot)# Date: 2020-08-31# Exploit Author: Uriel Yochpaz and Jonatan Schor#

Tagged with:




IlchCMS 2.1.37 Cross Site Scripting ≈ Packet Storm

September 11th, 2020 📆 | 4780 Views ⚑

Information——————– Advisory by NetsparkerName: Cross-Site Scripting in IlchCMSAffected Software: IlchCMSAffected Versions: 2.1.37Vendor Homepage: https://www.ilch.de/Vulnerability Type: Cross-Site ScriptingSeverity: ImportantStatus: FixedCVSS Score

Tagged with:




Hyland OnBase Cross Site Request Forgery ≈ Packet Storm

September 8th, 2020 📆 | 1581 Views ⚑

CVSSv3.1 Score————————————————-AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N Vendor————————————————-Hyland Software – (https://www.hyland.com/en/ and https://www.onbase.com/en/) Product————————————————-Hyland OnBaseAll derivatives based on OnBase Versions Affected————————————————-All versions up to and

Tagged with: