Gr3gPr1est

4 exploits Active since Sep 2020
CVE-2020-21733 WRITEUP MEDIUM WRITEUP
Sagemcom F@ST3686 v1.0 HUN 3.97.0 - Cross-Site Scripting via Multiple Pages
Sagemcom F@ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, RgVpnL2tpPptp.asp.
CVSS 6.1
CVE-2020-21731 WRITEUP MEDIUM WRITEUP
Gazie 7.29 - Stored Cross-Site Scripting via admin_utente.php User Name Parameter
Gazie 7.29 is affected by: Cross Site Scripting (XSS) via http://192.168.100.7/gazie/modules/config/admin_utente.php?user_name=amministratore&Update. An attacker can inject JavaScript code, and the webapplication stores the injected code.
CVSS 6.1
CVE-2020-21732 WRITEUP MEDIUM WRITEUP
Rukovoditel Project Management app 2.6 - Stored Cross-Site Scripting via Filename
Rukovoditel Project Management app 2.6 is affected by: Cross Site Scripting (XSS). An attacker can add JavaScript code to the filename.
CVSS 6.1
CVE-2020-21733 WRITEUP MEDIUM WRITEUP
Sagemcom F@ST3686 v1.0 HUN 3.97.0 - Cross-Site Scripting via Multiple Pages
Sagemcom F@ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, RgVpnL2tpPptp.asp.
CVSS 6.1