|
248401
|
6.1 |
MEDIUM
Network
|
webpagetest_project
|
webpagetest
|
A Cross-Site Scripting (XSS) issue was discovered in webpagetest 3.0. The vulnerability exists due to insufficient filtration of user-supplied data (bgcolor) passed to the webpagetest-master/www/vide…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6537
|
2024-11-21 12:29 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248402
|
6.1 |
MEDIUM
Network
|
webpagetest_project
|
webpagetest
|
Multiple Cross-Site Scripting (XSS) issues were discovered in webpagetest 3.0. The vulnerabilities exist due to insufficient filtration of user-supplied data (url, pssid) passed to the webpagetest-ma…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6536
|
2024-11-21 12:29 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248403
|
6.1 |
MEDIUM
Network
|
webpagetest_project
|
webpagetest
|
Multiple Cross-Site Scripting (XSS) issues were discovered in webpagetest 3.0. The vulnerabilities exist due to insufficient filtration of user-supplied data (benchmark, url) passed to the webpagetes…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6535
|
2024-11-21 12:29 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248404
|
6.1 |
MEDIUM
Network
|
webpagetest_project
|
webpagetest
|
A Cross-Site Scripting (XSS) issue was discovered in webpagetest 3.0. The vulnerability exists due to insufficient filtration of user-supplied data (pssid) passed to the webpagetest-master/www/pss.ph…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6534
|
2024-11-21 12:29 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248405
|
6.1 |
MEDIUM
Network
|
webpagetest_project
|
webpagetest
|
A Cross-Site Scripting (XSS) issue was discovered in webpagetest 3.0. The vulnerability exists due to insufficient filtration of user-supplied data (benchmark) passed to the webpagetest-master/www/be…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6533
|
2024-11-21 12:29 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248406
|
6.1 |
MEDIUM
Network
|
sanadata
|
sanacms
|
Cross-site scripting (XSS) vulnerability in /sanadata/seo/index.asp in SANADATA SanaCMS 7.3 allows remote attackers to inject arbitrary web script or HTML via the txtFrom parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2017-6518
|
2024-11-21 12:29 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248407
|
6.1 |
MEDIUM
Network
|
finecms_project
|
finecms
|
andrzuk/FineCMS before 2017-03-06 is vulnerable to a reflected XSS in index.php because of missing validation of the action parameter in application/classes/application.php.
|
CWE-79
Cross-site Scripting
|
CVE-2017-6511
|
2024-11-21 12:29 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248408
|
6.1 |
MEDIUM
Network
|
burgundy-cms_project
|
burgundy-cms
|
Smith0r/burgundy-cms before 2017-03-06 is vulnerable to a reflected XSS in admin/components/menu/views/menuitems.php (id parameter).
|
CWE-79
Cross-site Scripting
|
CVE-2017-6509
|
2024-11-21 12:29 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248409
|
6.1 |
MEDIUM
Network
|
gnu
|
wget
|
CRLF injection vulnerability in the url_parse function in url.c in Wget through 1.19.1 allows remote attackers to inject arbitrary HTTP headers via CRLF sequences in the host subcomponent of a URL.
|
CWE-93
CRLF Injection
|
CVE-2017-6508
|
2024-11-21 12:29 |
2017-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248410
|
8.8 |
HIGH
Network
|
dlink
|
dsl-2730u_firmware
|
Cross Site Request Forgery (CSRF) on D-Link DSL-2730U C1 IN_1.00 devices allows remote attackers to change the DNS or firewall configuration or any password.
|
CWE-352
Origin Validation Error
|
CVE-2017-6411
|
2024-11-21 12:29 |
2017-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
