indoushka vulnerabilities and exploits

NA
CVE-2013-4144

osCmax e-Commerce version 2.5.3 suffers from cross site scripting and remote shell upload vulnerabilities....

NA
CVE-2013-4145

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-3414. Reason: This candidate is a duplicate of CVE-2012-3414. Notes: All CVE users should reference CVE-2012-3414 instead of this candidate. All references and descriptions in this candidate have been...

NA
CVE-2013-4146

osCmax e-Commerce version 2.5.3 suffers from cross site scripting and remote shell upload vulnerabilities....

10
CVSSv2
CVE-2012-2399

Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFupload 2.2.0.1 and earlier, as used in WordPress before 3.5.2, TinyMCE Image Manager 1.1 and earlier, and other products allows remote attackers to inject arbitrary web script or HTML via the buttonText parameter, a...

Wordpress
4.3
CVSSv2
CVE-2012-3414

Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFUpload 2.2.0.1 and earlier, as used in WordPress before 3.3.2, TinyMCE Image Manager 1.1, and other products, allows remote attackers to inject arbitrary web script or HTML via the movieName parameter, related to...

Swfupload ProjectSwfuploadTinymceImage ManagerWordpress
4.3
CVSSv2
CVE-2018-18551

ServersCheck Monitoring Software through 14.3.3 has Persistent and Reflected XSS via the sensors.html status parameter, sensors.html type parameter, sensors.html device parameter, report.html location parameter, group_delete.html group parameter, report_save.html query...