Lucene search
K

6 matches found

Circl
Circl
added 2023/02/27 6:28 p.m.5 views

CVE-2023-26042

creationtimestamp| type| source ---|---|--- 2023-02-27 18:28:00+00:00| seen| https://t.me/cibsecurity/58956...

6.1CVSS6.1AI score0.0051EPSS
Exploits0References1
NVD
NVD
added 2023/02/27 3:15 p.m.15 views

CVE-2023-26042

Part-DB is an open source inventory management system for your electronic components. User input was found not being properly escaped, which allowed malicious users to inject arbitrary HTML into the pages. The Content-Security-Policy forbids inline and external scripts so it is not possible to...

6.1CVSS6.4AI score0.0051EPSS
Exploits0References4
OSV
OSV
added 2023/02/27 2:41 p.m.20 views

CVE-2023-26042 HTML/XSS injection possibilities in Part-DB

Part-DB is an open source inventory management system for your electronic components. User input was found not being properly escaped, which allowed malicious users to inject arbitrary HTML into the pages. The Content-Security-Policy forbids inline and external scripts so it is not possible to...

6.1CVSS6.5AI score0.0051EPSS
Exploits0References6
CVE
CVE
added 2023/02/27 2:41 p.m.50 views

CVE-2023-26042

CVE-2023-26042 affects Part-DB, an open-source inventory management system for electronic components. The root issue is improper escaping of user input, enabling HTML/XSS injection into pages. The CSP blocks inline and external scripts, limiting exploitability to combinations with other vulnerabi...

6.1CVSS6.4AI score0.0051EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/27 2:41 p.m.4 views

CVE-2023-26042 HTML/XSS injection possibilities in Part-DB

Part-DB is an open source inventory management system for your electronic components. User input was found not being properly escaped, which allowed malicious users to inject arbitrary HTML into the pages. The Content-Security-Policy forbids inline and external scripts so it is not possible to...

6.1CVSS6.6AI score0.0051EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/02/27 2:41 p.m.22 views

CVE-2023-26042 HTML/XSS injection possibilities in Part-DB

Part-DB is an open source inventory management system for your electronic components. User input was found not being properly escaped, which allowed malicious users to inject arbitrary HTML into the pages. The Content-Security-Policy forbids inline and external scripts so it is not possible to...

6.1CVSS6.6AI score0.0051EPSS
Exploits0References4
Rows per page
Query Builder