SAS Web Report Studio 4.4 allows XSS. /SASWebReportStudio/logonAndRender.do has two parameters: saspfs_request_backlabel_list and saspfs_request_backurl_list. The first one affects the content of the button placed in the top left. The second affects the page to which the user is directed after...
6.1CVSS
5.9AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.002EPSS
SAS Web Infrastructure Platform before 9.4M6 allows remote attackers to execute arbitrary code via a Java deserialization...
9.8CVSS
9.7AI Score
0.01EPSS
Logon Manager in SAS Web Infrastructure Platform before 9.4M3 allows reflected XSS on the Timeout...
6.1CVSS
5.9AI Score
0.001EPSS
HPE IPFilter A.11.31.18.21 on HP-UX, when a certain keep-state configuration is enabled, allows remote attackers to cause a denial of service via unspecified UDP...
5.9CVSS
5.8AI Score
0.005EPSS
Multiple unspecified vulnerabilities in JP1/Cm2/Network Node Manager (NNM) before 07-10-05, and before 08-00-02 in the 08-x series, allow remote attackers to execute arbitrary code, cause a denial of service, or trigger invalid Web utility...
7.8AI Score
0.104EPSS
Unspecified vulnerability in HP-UX B.11.23, when running IPFilter in combination with PHNE_34474, allows remote attackers to cause a denial of service (system crash) via unspecified...
6.4AI Score
0.067EPSS