header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Vulnerability Type
No results found
Cross Site Scripting (XSS) to Cross Site Request Forgery (CSRF) (1)
Cross-Site Scripting (XSS) (1)
Persistent Cross Site Scripting (1)
Reflected Cross Site Scripting (XSS) (1)
Remote Command Execution (1)
CWE
No results found
79 (4)
78 (1)
CPE
No results found
2.3:a:wordpress:stop_spammer_registrations_plugin:2021.8 (1)
a:aruba:aruba_os:501 (1)
a:laravel:laravel_framework:8.70.1 (1)
a:tecnoteca:cmdbuild:3.3.2 (1)
openmaint (1)
Vendor
No results found
Aruba (1)
Laravel (1)
openMAINT (1)
Tecnoteca (1)
WordPress (1)
Product Name
No results found
Aurba 501 (1)
CMDBuild (1)
Laravel Framework (1)
openMAINT (1)
Stop Spammers (1)
Version
From
No results found
2.1 (1)
3.1 (1)
3.3.2001 (1)
8.70.1 (1)
Aurba 501 CN12G5W0XX (1)
To
No results found
3.3 (1)
3.3.2002 (1)
3.5-RC7 (1)
8.70.1 (1)
Aurba 501 CN12G5W0XX (1)
Severity Type
No results found
HIGH (3)
MEDIUM (2)
Severity Number
No results found
6.1 (3)
8.8 (2)
Exploit Author
No results found
SecurityFocus (6696)
Unknown (2432)
Ihsan Sencan (887)
Gjoko 'LiquidWorm' Krstic (361)
Anonymous (353)
Project Zero (308)
milw0rm.com (271)
juan vazquez (245)
rgod (243)
LiquidWorm (222)
MC (202)
ajann (187)
Luigi Auriemma (187)
N/A (187)
Google Security Research (183)
indoushka (182)
shinnai (162)
sinn3r (154)
hdm (138)
John Page (aka hyp3rlinx) (131)
jduck (121)
cr4wl3r (113)
Hussin X (113)
Not mentioned (111)
Vulnerability Laboratory Research Team (108)
ZoRLu (99)
Kacper (a.k.a Rahim) (92)
nu11secur1ty (91)
mr_me (90)
Easy Laster (89)
CWH Underground (88)
S@BUN (84)
SirGod (83)
Ahmet Ümit BAYRAM (80)
High-Tech Bridge Security Research Lab (80)
xoron (80)
Dr_IDE (78)
Sid3^effects aKa haRi (78)
Todor Donev (75)
hyp3rlinx (74)
Stack (73)
Francis Provencher (71)
High-Tech Bridge SA - Ethical Hacking & Penetration Testing (70)
Ismail Tasdelen (70)
AntiSecurity (69)
His0k4 (68)
Kingcope (65)
ThE g0bL!N (65)
Not Specified (64)
Miroslav Stampar (61)
Platforms Tested
No results found
Linux (3)
Windows & Ubuntu (1)
Windows/Linux (1)
Year
Year
No results found
2021 (4)
2024 (1)

Explore all Exploits:

CMDBuild 3.3.2 – ‘Multiple’ Cross Site Scripting (XSS)

Multiple stored cross-site scripting (XSS) vulnerabilities in Tecnoteca CMDBuild 3.3.1 allow remote attackers to inject arbitrary web script or HTML via a crafted SVG document. The attack vectors include Add Attachment, Add Office, and Add Employee. Almost all add sections.

openMAINT openMAINT 2.1-3.3-b – ‘Multiple’ Persistent Cross-Site Scripting

Multiple stored cross-site scripting (XSS) vulnerabilities in openMAINT 2.1-3.3-b allow remote attackers to inject arbitrary web script or HTML via any 'Add' sections, such as Add Card Building & Floor, or others in the Name And Code Parameters.

Recent Exploits: