Lucene search
K

9 matches found

Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/06/24 2:5 a.m.4 views

LINE client for iOS vulnerable to universal cross-site scripting

Overview The in-app browser of LINE client for iOS provided by LY Corporation contains a universal cross-site scripting vulnerability CWE-79, CVE-2024-5739. LY Corporation reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact If a user clicks a malicious...

6.1CVSS5.9AI score0.00269EPSS
Exploits0References4
NVD
NVD
added 2024/06/12 7:15 a.m.43 views

CVE-2024-5739

The in-app browser of LINE client for iOS versions below 14.9.0 contains a Universal XSS UXSS vulnerability. This vulnerability allows for cross-site scripting XSS where arbitrary JavaScript can be executed in the top frame from an embedded iframe on any displayed web site within the in-app...

6.1CVSS0.00269EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/12 12:0 a.m.5 views

PT-2024-37114

Name of the Vulnerable Software and Affected Versions: LINE client for iOS versions prior to 14.9.0 Description: The in-app browser of the LINE client contains a Universal XSS UXSS vulnerability, allowing for cross-site scripting XSS where arbitrary JavaScript can be executed in the top frame fro...

6.1CVSS5.5AI score0.00269EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2022/06/14 12:0 a.m.8 views

GitLab 13.2 < 14.8.6, 14.9.0 < 14.9.4, 14.10 < 14.10.1 Information Disclosure Vulnerability

GitLab is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if...

4.3CVSS4.8AI score0.00765EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/06/13 12:0 a.m.13 views

GitLab 1.0.2 < 14.8.6, 14.9.0 < 14.9.4, 14.10.0 < 14.10.1 Multiple Vulnerabilities

GitLab is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if description...

8.8CVSS7.4AI score0.01406EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2022/05/19 12:0 a.m.3 views

PT-2022-13876 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 1.0.2 through 14.8.5 GitLab CE/EE versions 14.9.0 through 14.9.3 GitLab CE/EE versions 14.10.0 Description: The issue is related to improper access control in the CI/CD cache mechanism, allowing a malicious actor with...

8.8CVSS8.8AI score0.01406EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2022/05/19 12:0 a.m.8 views

PT-2022-13869 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 1.0.2 through 14.8.6 GitLab CE/EE versions 14.9.0 through 14.9.4 GitLab CE/EE versions 14.10.0 through 14.10.1 Description: The issue is related to missing input masking in GitLab CE/EE, which causes potentially sensitiv...

7.5CVSS7.1AI score0.00886EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.33 views

GitLab 8.12.0 < 14.8.6 / 14.9.0 < 14.9.4 / 14.10.0 < 14.10.1 (CVE-2022-1406)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Improper input validation in GitLab CE/EE affecting all versions from 8.12 prior to 14.8.6, all versions from 14.9.0 prior to 14.9.4, and 14.10.0 allows a Developer to read protected Group or Project...

6.5CVSS6.9AI score0.01108EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/04/04 12:0 a.m.1 views

PT-2022-13699 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 10 through 14.7.7 GitLab CE/EE versions 14.8.0 through 14.8.5 GitLab CE/EE versions 14.9.0 through 14.9.2 Description: A denial of service issue occurs when rendering RDoc files, allowing an attacker to crash the GitLab...

6.5CVSS6.3AI score0.01277EPSS
Exploits0References12
Rows per page
Query Builder