Pralhad Chaskar

2 exploits Active since Mar 2017
CVE-2017-18639 EXPLOITDB MEDIUM text WRITEUP
Progress Sitefinity CMS <10.1 - XSS
Progress Sitefinity CMS before 10.1 allows XSS via /Pages Parameter : Page Title, /Content/News Parameter : News Title, /Content/List Parameter : List Title, /Content/Documents/LibraryDocuments/incident-request-attachments Parameter : Document Title, /Content/Images/LibraryImages/newsimages Parameter : Image Title, /Content/links Parameter : Link Title, /Content/links Parameter : Link Title, or /Content/Videos/LibraryVideos/default-video-library Parameter : Video Title.
CVSS 6.1
CVE-2016-8855 EXPLOITDB MEDIUM text WRITEUP
Sitecore Experience Platform 8.1 - XSS
Cross-Site Scripting (XSS) in "/sitecore/client/Applications/List Manager/Taskpages/Contact list" in Sitecore Experience Platform 8.1 rev. 160519 (8.1 Update-3) allows remote attacks via the Name or Description parameter. This is fixed in 8.2 Update-2.
CVSS 6.1