MarkLee131

6 exploits Active since Mar 2017
CVE-2017-6396 WRITEUP MEDIUM WRITEUP
Webpagetest - XSS
An issue was discovered in WPO-Foundation WebPageTest 3.0. The vulnerability exists due to insufficient filtration of user-supplied data passed to the "webpagetest-master/www/compare-cf.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
CVSS 6.1
CVE-2017-6537 WRITEUP MEDIUM WRITEUP
Webpagetest - XSS
A Cross-Site Scripting (XSS) issue was discovered in webpagetest 3.0. The vulnerability exists due to insufficient filtration of user-supplied data (bgcolor) passed to the webpagetest-master/www/video/view.php URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
CVSS 6.1
CVE-2017-6541 WRITEUP MEDIUM WRITEUP
Webpagetest - XSS
Multiple Cross-Site Scripting (XSS) issues were discovered in webpagetest 3.0. The vulnerabilities exist due to insufficient filtration of user-supplied data (benchmark, time) passed to the webpagetest-master/www/benchmarks/viewtest.php URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
CVSS 6.1
CVE-2018-15899 WRITEUP MEDIUM WRITEUP
1234n Minicms - XSS
An issue was discovered in MiniCMS 1.10. There is a post.php?date= XSS vulnerability.
CVSS 6.1
CVE-2021-35438 WRITEUP MEDIUM WRITEUP
phpIPAM 1.4.3 - XSS
phpIPAM 1.4.3 allows Reflected XSS via app/dashboard/widgets/ipcalc-result.php and app/tools/ip-calculator/result.php of the IP calculator.
CVSS 6.1
CVE-2023-4451 WRITEUP MEDIUM WRITEUP
Agentejo Cockpit < 2.6.3 - XSS
Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq/cockpit prior to 2.6.4.
CVSS 6.1