AS_Redis is an AntSword plugin for Redis. The Redis Manage plugin for AntSword prior to version 0.5 is vulnerable to Self-XSS due to due to insufficient input validation and sanitization via redis server configuration. Self-XSS in the plugin configuration leads to code execution. This issue is...
6.4CVSS
5.7AI Score
0.001EPSS
A cross-site scripting (XSS) vulnerability AntSword v2.0.7 can remotely execute system...
9.6CVSS
8.2AI Score
0.002EPSS
AntSword 2.1.8.1 contains a cross-site scripting (XSS) vulnerability in the View Site funtion. When viewing an added site, an XSS payload can be injected in cookies view which can lead to remote code...
6.1CVSS
6.2AI Score
0.001EPSS
In antSword before 2.1.0, self-XSS in the database configuration leads to code execution via modules/database/asp/index.js, modules/database/custom/index.js, modules/database/index.js, or...
6.1CVSS
6.5AI Score
0.002EPSS