ngkogkos
commented
7 years ago 
Closed ngkogkos closed 7 years ago
ngkogkos
commented
7 years ago
Sinderella
commented
7 years ago Cannot replicate this using python3.
$ ephe "drupal cross script"
.-""-.
(___/\ \
( |' ' ) ) Ephe v0.0.1-beta
__) _\=_/ (
____(__._ ` \ )
.(/8-.._.88, ; (
/ /8. `88., | )
_.`'---.._/ /.8_ ____.'_| |_/
'-'``'-._ / | `-........'
`;-"`; | Dionach Ltd
`'.__/
07:43:04 [N] ephe: Spawned a thread for searching at ExploitDB
07:43:04 [N] ephe: Spawned a thread for searching at PacketStorm
07:43:04 [N] ephe: Spawned a thread for searching at SecurityFocus
07:43:04 [N] ephe: Spawned a thread for searching at ZeroDayToday
07:43:05 [N] PacketStorm: Limit reached (limit: 10)
07:43:07 [E] ZeroDayToday: ZeroDayToday is down, check if the site is not taken down: Cannot retrieve information (status code: 503)
________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________
| CVE | Description | Date | URL |
________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________
| N/A | iScripts MultiCart 2.4 - Persistent Cross-Site Scripting / Cross-Site Request Forgery / Cross-Site Scripting / Cross-Site Request Forgery / Mass Accounts Takeover| 2013-12-16 | https://www.exploit-db.com/exploits/30357 |
| CVE-2014-8773 | MODx CMS 2.2.14 - Cross-Site Request Forgery Bypass / Reflected Cross-Site Scripting / Persistent Cross-Site Scripting | 2014-11-05 | https://www.exploit-db.com/exploits/35159 |
| N/A | Drupal Module CKEditor < 4.1WYSIWYG (Drupal 6.x / 7.x) - Persistent Cross-Site Scripting | 2013-05-17 | https://www.exploit-db.com/exploits/25493 |
| N/A | Recipe Script 5.0 - Arbitrary File Upload / Cross-Site Request Forgery / Cross-Site Scripting | 2009-12-16 | https://www.exploit-db.com/exploits/10472 |
| N/A | Scriptsez Ez FAQ Maker 1.0 - Cross-Site Scripting / Cross-Site Request Forgery | 2009-12-15 | https://www.exploit-db.com/exploits/34357 |
| CVE-2015-1575 | u5CMS 3.9.3 - Multiple Persistent Cross-Site Scripting / Reflected Cross-Site Scripting Vulnerabilities | 2015-02-09 | https://www.exploit-db.com/exploits/36029 |
| CVE-2012-5851 | WebKit Cross-Site Scripting Filter - 'Cross-Site ScriptingAuditor.cpp' Security Bypass | 2012-07-19 | https://www.exploit-db.com/exploits/38024 |
| N/A | RealtyScript 4.0.2 - Multiple Cross-Site Request Forgery / Persistent Cross-Site Scripting Vulnerabilities | 2015-10-19 | https://www.exploit-db.com/exploits/38496 |
| N/A | iBilling 3.7.0 - Persistent Cross-Site Scripting / Reflected Cross-Site Scripting | 2016-06-27 | https://www.exploit-db.com/exploits/40022 |
| CVE-2008-6823 | A-Link WL54AP3 / WL54AP2 - Cross-Site Request Forgery / Cross-Site Scripting | 2008-10-31 | https://www.exploit-db.com/exploits/6899 |
| N/A | Drupal XSS Password Changer | 2009-03-06 | https://packetstormsecurity.com/files/75469 |
| CVE-2012-5545 | Drupal ShareThis Module Cross Site Scripting Vulnerability | 2012-10-10 | http://www.securityfocus.com/bid/55870 |
| CVE-2015-3387 | Drupal Taxonomy Tools Module Multiple Cross Site Scripting Vulnerabilities | 2015-02-12 | http://www.securityfocus.com/bid/72588 |
| CVE-2014-8378 | Drupal TableField Module Cross Site Scripting Vulnerability | 2014-08-13 | http://www.securityfocus.com/bid/69227 |
| N/A | Drupal Nodequeue Module Security Bypass and Cross Site Scripting Vulnerabilities | 2009-06-10 | http://www.securityfocus.com/bid/35305 |
| N/A | Drupal OpenLucius Module Cross Site Scripting and Cross Site Request Forgery Vulnerabilities | 2017-01-11 | http://www.securityfocus.com/bid/95392 |
| N/A | Drupal Opening hours Module Cross Site Scripting Vulnerability | 2016-06-01 | http://www.securityfocus.com/bid/90998 |
| CVE-2008-0462 | Drupal Archive Module Cross-Site Scripting Vulnerabilities | 2008-01-23 | http://www.securityfocus.com/bid/27436 |
| N/A | Drupal ShareThis Module Cross Site Request Forgery and Cross Site Scripting Vulnerabilities | 2012-03-28 | http://www.securityfocus.com/bid/52778 |
| N/A | Drupal Chat Room Module Cross Site Scripting and Cross Request Forgery Vulnerabilities | 2011-02-02 | http://www.securityfocus.com/bid/46118 |
| N/A | Drupal Views Module Multiple Cross Site Scripting Vulnerabilities | 2010-12-15 | http://www.securityfocus.com/bid/45437 |
________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________
Process finished with exit code 0
I experienced the same issue, but it's resolved by just reinstalling the package.
I simply added a couple of lines for debugging purposes. If it happens again, we know where to look and how to fix as I cannot replicate this, then we can reopen this.