Lucene search
K

8 matches found

OSV
OSV
added 2025/03/17 2:15 p.m.3 views

CVE-2025-0828

A stored Cross-site Scripting XSS vulnerability affecting Engineering Release in ENOVIA Product Engineering Specialist from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

5.4CVSS6AI score0.00228EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/17 12:0 a.m.6 views

Dassault Systèmes ENOVIA Collaborative Industry Innovator 安全漏洞

Dassault Systèmes ENOVIA Collaborative Industry Innovator is an essential toolset for real-time, secure and structured collaboration and product content management for an engineering team at Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes ENOVIA Collaborative Indust...

8.7CVSS5.9AI score0.00228EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 9:23 p.m.13 views

CVE-2022-2024

OS Command Injection in GitHub repository gogs/gogs prior to 0.12.11...

9.8CVSS7.1AI score0.97839EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/10/16 12:0 a.m.7 views

PT-2024-37583 · Ds Systemes · Enovia Collaborative Industry Innovator

Name of the Vulnerable Software and Affected Versions: ENOVIA Collaborative Industry Innovator versions 3DEXPERIENCE R2022x through 3DEXPERIENCE R2024x Description: A reflected Cross-site Scripting XSS vulnerability allows an attacker to execute arbitrary script code in a user's browser session...

8.7CVSS5.8AI score0.00253EPSS
Exploits0References7
OSV
OSV
added 2024/05/29 2:38 p.m.15 views

GHSA-XJM6-JFMG-QC6P Aimeos denial of service vulnerability in SaaS and marketplace setups

Impact All SaaS and marketplace setups using Aimeos version from 2022/2023/2024 are affected by a potential denial of service attack Patches Upgrade to the latest 2022.10 LTS, 2023.10 LTS and 2024.04.7 version of the aimeos/aimeos-core package...

5.5CVSS5.4AI score0.00435EPSS
Exploits0References9
Cvelist
Cvelist
added 2023/02/25 12:0 a.m.41 views

CVE-2022-2024 OS Command Injection in gogs/gogs

OS Command Injection in GitHub repository gogs/gogs prior to 0.12.11...

9.8CVSS10AI score0.97839EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/02/25 12:0 a.m.7 views

CVE-2022-2024 OS Command Injection in gogs/gogs

OS Command Injection in GitHub repository gogs/gogs prior to 0.12.11...

9.8CVSS9.7AI score0.97839EPSS
Exploits1References2
CVE
CVE
added 2023/02/25 12:0 a.m.84 views

CVE-2022-2024

Vulnerability summary (CVE-2022-2024) : Gogs (gogs/gogs) versions prior to 0.12.11 are affected by an OS Command Injection in the repository file upload path. The issue arises when a crafted config file is placed into a repository’s .git directory during uploads, enabling remote command execution...

9.8CVSS9.7AI score0.97839EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder