shaojiejiang

3 exploits Active since Oct 2017
CVE-2017-14983 WRITEUP MEDIUM WRITEUP
EyesOfNetwork 5.1-0 - Authenticated Stored Cross-Site Scripting via module/admin_conf/index.php Object Parameter
Cross-site scripting (XSS) vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated administrators to inject arbitrary web script or HTML via the object parameter to module/admin_conf/index.php.
CVSS 4.8
CVE-2017-14984 WRITEUP MEDIUM WRITEUP
eyesofnetwork 5.1-0 - Authenticated Stored Cross-Site Scripting via bp_name Parameter
Cross-site scripting (XSS) vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated users to inject arbitrary web script or HTML via the bp_name parameter to /module/admin_bp/add_services.php.
CVSS 5.4
CVE-2017-14985 WRITEUP MEDIUM WRITEUP
eyesofnetwork 5.1-0 - Authenticated Cross-Site Scripting via URL Parameter
Cross-site scripting (XSS) vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated users to inject arbitrary web script or HTML via the url parameter to module/module_frame/index.php.
CVSS 5.4