CVE-2014-10078

Published: 23/02/2019 Updated: 18/03/2019

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vembu StoreGrid 4.4.x has XSS in interface/registercustomer/onlineregsuccess.php, interface/registerreseller/onlineregfailure.php, interface/registerclient/onlineregfailure.php, and interface/registercustomer/onlineregfailure.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
vembu storegrid 4.4

# Exploit Title: Vembu Storegrid Web Interface 440 - Multiple Vulnerabilities # Discovery Date: 2018-12-05 # Exploit Author: Gionathan "John" Reale # Vendor Homepage: wwwvembucom/ # Software Link : N/A # Google Dork: N/A # Version: 440 # CVE : CVE-2014-10078,CVE-2014-10079 Description StoreGrid enables you to offer an automated o ...

Vembu Storegrid Web Interface version 440 suffers from cross site scripting and information leakage vulnerabilities ...

CWE-79 https://seclists.org/fulldisclosure/2014/Aug/8 https://cxsecurity.com/issue/WLB-2018120091 https://www.exploit-db.com/exploits/46549/https://nvd.nist.gov https://www.exploit-db.com/exploits/46549

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-10078

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect