News

Telaxus Epesi 1.8.1.1 arbitrary Execute Code Cross Site Scripting Vulnerability

Multiple Cross-Site Scripting (XSS) issues were discovered in EPESI 1.8.1.1. The vulnerabilities exist due to insufficient filtration of user-supplied data (cid, value, element, mode, tab, form_name, id) passed to the EPESI-master/modules/Utils/RecordBrowser/grid.php URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website..

Read More »

Wireshark Overflow Vulnerability

Wireshark is prone to a overflow vulnerability.This allows a remote attackers to execute arbitrary code via crafted packets and cause a denial of service (memory corruption)

Read More »

Reasoncms 4.7 insufficient Execute Code Cross Site Scripting Vulnerability

A Cross-Site Scripting (XSS) issue was discovered in reasoncms before 4.7.1. The vulnerability exists due to insufficient filtration of user-supplied data (nyroModalSel) passed to the ‘reasoncms-master/www/nyroModal/demoSent.php’ URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.

Read More »