Exploit Intelligence Platform

CVE-2017-9813 6.1 MEDIUM 1 PoC Analysis EPSS 0.04

In Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312), the scriptName parameter of the licenseKeyInfo action method is vulnerable to cross-site scripting (XSS).

CWE-79 Jul 17, 2017

CVE-2017-9609 5.4 MEDIUM 1 PoC Analysis EPSS 0.01

Cross-site scripting (XSS) vulnerability in Blackcat CMS 1.2 allows remote authenticated users to inject arbitrary web script or HTML via the map_language parameter to backend/pages/lang_settings.php.

CWE-79 Jul 17, 2017

CVE-2017-9340 6.5 MEDIUM EPSS 0.00

An attacker is logged in as a normal user and can somehow make admin to delete shared folders in ownCloud Server before 10.0.2.

Jul 17, 2017

CVE-2017-9339 5.3 MEDIUM EPSS 0.00

A logical error in ownCloud Server before 10.0.2 caused disclosure of valid share tokens for public calendars. Thus granting an attacker potentially access to publicly shared calendars without knowing the share token.

Jul 17, 2017

CVE-2017-9338 5.4 MEDIUM EPSS 0.00

Inadequate escaping lead to XSS vulnerability in the search module in ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2. To be exploitable a user has to write or paste malicious content into the search dialogue.

CWE-79 Jul 17, 2017

CVE-2017-8896 6.1 MEDIUM EPSS 0.00

ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2 are vulnerable to XSS on error pages by injecting code in url parameters.

CWE-79 Jul 17, 2017

CVE-2017-7947 6.5 MEDIUM EPSS 0.00

NetApp Clustered Data ONTAP before 8.3.2P11, 9.0 before P4, and 9.1 before P5 allow attackers to obtain sensitive password information by leveraging logging of passwords entered non-interactively on the command line.

CWE-200 Jul 17, 2017

CVE-2017-3754 6.7 MEDIUM EPSS 0.00

Some Lenovo brand notebook systems do not have write protections properly configured in the system BIOS. This could enable an attacker with physical or administrative access to a system to be able to flash the BIOS with an arbitrary image and potentially run malicious BIOS code.

Jul 17, 2017

CVE-2017-3742 4.8 MEDIUM EPSS 0.00

In Lenovo Connect2 versions earlier than 4.2.5.4885 for Windows and 4.2.5.3071 for Android, when an ad-hoc connection is made between two systems for the purpose of sharing files, the password for this ad-hoc connection will be stored in a user-readable location. An attacker with read access to the user's contents could connect to the Connect2 hotspot and see the contents of files while they are being transferred between the two systems.

CWE-200 Jul 17, 2017

CVE-2017-11128 5.4 MEDIUM EPSS 0.00

Bolt CMS 3.2.14 allows stored XSS via text input, as demonstrated by the Title field of a New Entry.

CWE-79 Jul 17, 2017

CVE-2017-11127 5.4 MEDIUM EPSS 0.00

Bolt CMS 3.2.14 allows stored XSS by uploading an SVG document with a "Content-Type: image/svg+xml" header.

CWE-79 Jul 17, 2017

CVE-2017-7532 6.5 MEDIUM EPSS 0.00

In Moodle 3.x, course creators are able to change system default settings for courses.

CWE-269 Jul 17, 2017

CVE-2017-7531 4.3 MEDIUM EPSS 0.00

In Moodle 3.3, the course overview block reveals activities in hidden courses.

CWE-200 Jul 17, 2017

CVE-2017-2642 6.5 MEDIUM EPSS 0.00

Moodle 3.x has user fullname disclosure on the user preferences page.

CWE-200 Jul 17, 2017

CVE-2017-8034 6.6 MEDIUM EPSS 0.00

The Cloud Controller and Router in Cloud Foundry (CAPI-release capi versions prior to v1.32.0, Routing-release versions prior to v0.159.0, CF-release versions prior to v267) do not validate the issuer on JSON Web Tokens (JWTs) from UAA. With certain multi-zone UAA configurations, zone administrators are able to escalate their privileges.

CWE-565 Jul 17, 2017

CVE-2017-8006 5.9 MEDIUM EPSS 0.01

In EMC RSA Authentication Manager 8.2 SP1 Patch 1 and earlier, a malicious user logged into the Self-Service Console of RSA Authentication Manager as a target user can use a brute force attack to attempt to identify that user's PIN. The malicious user could potentially reset the compromised PIN to affect victim's ability to obtain access to protected resources.

CWE-287 Jul 17, 2017

CVE-2017-8005 5.4 MEDIUM EPSS 0.00

The EMC RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG products (RSA Identity Governance and Lifecycle versions 7.0.1, 7.0.2, all patch levels; RSA Via Lifecycle and Governance version 7.0, all patch levels; RSA Identity Management and Governance (RSA IMG) versions 6.9.1, all patch levels) are affected by multiple stored cross-site scripting vulnerabilities. Remote authenticated malicious users could potentially inject arbitrary HTML code to the application.

CWE-79 Jul 17, 2017

CVE-2017-8000 4.8 MEDIUM EPSS 0.00

In EMC RSA Authentication Manager 8.2 SP1 and earlier, a malicious RSA Security Console Administrator could craft a token profile and store the profile name in the RSA Authentication Manager database. The profile name could include a crafted script (with an XSS payload) that could be executed when viewing or editing the assigned token profile in the token by another administrator's browser session.

CWE-79 Jul 17, 2017

CVE-2017-7685 5.3 MEDIUM EPSS 0.01

Apache OpenMeetings 1.0.0 responds to the following insecure HTTP methods: PUT, DELETE, HEAD, and PATCH.

Jul 17, 2017

CVE-2017-7663 6.1 MEDIUM EPSS 0.01

Both global and Room chat are vulnerable to XSS attack in Apache OpenMeetings 3.2.0.

CWE-79 Jul 17, 2017