Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 4:21 p.m.3 views

CVE-2020-14752

Vulnerability in the Hyperion Lifecycle Management product of Oracle Hyperion component: Shared Services. The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Lifecycle Management...

4.9CVSS5.2AI score0.00264EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 8:21 a.m.5 views

CVE-2019-14752

SuiteCRM 7.10.x and 7.11.x before 7.10.20 and 7.11.8 has XSS...

6.1CVSS7AI score0.00262EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2023/11/24 12:0 a.m.29 views

Atlassian Jira Service Management Data Center and Server < 4.20.27 / 5.4.x < 5.4.11 (JSDSERVER-14752)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14752 advisory. - In FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a...

7.5CVSS6.4AI score0.0025EPSS
Exploits1References2
CVE
CVEadded 2020/10/21 2:4 p.m.31 views

CVE-2020-14752

CVE-2020-14752 affects Oracle Hyperion Lifecycle Management (Shared Services) 11.1.2.4. The vulnerability is exploitable over HTTP with network access by a high-privilege attacker and requires user interaction; successful exploitation could lead to unauthorized creation, deletion or modification ...

4.9CVSS3.8AI score0.00264EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2019/09/30 12:11 p.m.84 views

CVE-2019-14752

CVE-2019-14752 affects SuiteCRM 7.10.x and 7.11.x prior to 7.10.20 and 7.11.8, with a Cross-Site Scripting (XSS) vulnerability. The provided sources indicate the affected versions and the fixed versions (7.10.20 and 7.11.8). The exact vulnerable component/condition is not detailed in the supplied...

6.1CVSS6.3AI score0.00262EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2017/10/31 6:29 p.m.11 views

CVE-2017-14752

Mahara 15.04 before 15.04.15, 16.04 before 16.04.9, 16.10 before 16.10.6, and 17.04 before 17.04.4 are vulnerable to a user submitting a potential dangerous payload, e.g., XSS code, to be saved as their first name, last name, or display name in the profile fields that can cause issues such as...

5.4CVSS5.8AI score0.00296EPSS
Exploits0References1
CVE
CVEadded 2017/10/31 6:0 p.m.45 views

CVE-2017-14752

Mahara is affected in multiple tracked versions (15.04 before 15.04.15; 16.04 before 16.04.9; 16.10 before 16.10.6; 17.04 before 17.04.4). The vulnerability allows a user to submit a dangerous payload (for example, XSS) in profile fields (first name, last name, display name) that is saved and can...

5.4CVSS5.6AI score0.00296EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Stormadded 2005/10/06 12:0 a.m.16 views

guppyTraverse.txt

BID 14752 is not only an XSS vulnerability, the real problem is a directory transversal flaw and affects Guppy versions less than 4.5.6a. PoC works for versions alertXSS" you receive an error that PHP can't include the file and the javascript gets executed. This assumes registerglobals and...

7.4AI score
Exploits0
Rows per page
Query Builder