Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:37 a.m.7 views

CVE-2019-20521

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the api/ URI...

7.4CVSS5.7AI score0.00786EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:5 p.m.6 views

CVE-2020-20521

Cross Site Scripting vulnerability found in KiteCMS v.1.1 allows a remote attacker to execute arbitrary code via the comment parameter...

6.1CVSS7.3AI score0.00565EPSS
Exploits1
Circl
Circl
added 2025/04/23 8:4 p.m.4 views

CVE-2022-20521

creationtimestamp| type| source ---|---|--- 2025-04-23 20:04:42+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13133...

5CVSS5.3AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2024/07/09 5:20 p.m.16 views

SUSE-SU-2024:2376-1 Security update for kernel-firmware

This update for kernel-firmware fixes the following issues: Update AMD ucode to 20231030 bsc1215831: - CVE-2022-23820: Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary code execution. - CVE-2021-46774: Insufficient...

9.8CVSS6.6AI score0.01018EPSS
Exploits0References14
Circl
Circl
added 2024/02/13 9:31 p.m.3 views

CVE-2023-20521

creationtimestamp| type| source ---|---|--- 2024-02-13 21:31:42+00:00| seen| https://t.me/ctinow/184224...

5.7CVSS5.3AI score0.00257EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/12/07 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2023:4665-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.4AI score0.01018EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2023/12/07 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2023:4654-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.4AI score0.01018EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/11/14 6:52 p.m.23 views

CVE-2023-20521

TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM records after memory content verification, potentially leading to loss of confidentiality or a denial of service...

3.3CVSS7.3AI score0.00257EPSS
Exploits0References3
CVE
CVE
added 2023/11/14 6:52 p.m.74 views

CVE-2023-20521

CVE-2023-20521 describes a TOCTOU flaw in the AMD ASP Bootloader that could let an attacker with physical access tamper SPI ROM records after memory verification, risking confidentiality loss and potential DoS. Connected sources (SUSE kernel-firmware updates and AMD/SUSe advisories) confirm this ...

5.7CVSS6.1AI score0.00257EPSS
Exploits0References3Affected Software1
Amd
Amd
added 2023/11/14 12:0 a.m.86 views

AMD Server Vulnerabilities – Nov 2023

Bulletin ID: AMD-SB-3002 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary Potential vulnerabilities in the AMD Secure Processor ASP, AMD System Management Unit SMU, AMD Secure Encrypted Virtualization SEV, AMD Secure Encrypted...

9.8CVSS6.7AI score0.00697EPSS
Exploits0
NVD
NVD
added 2023/04/04 3:15 p.m.10 views

CVE-2020-20521

Cross Site Scripting vulnerability found in KiteCMS v.1.1 allows a remote attacker to execute arbitrary code via the comment parameter...

6.1CVSS6.4AI score0.00565EPSS
Exploits1References1
OSV
OSV
added 2023/04/04 3:15 p.m.12 views

CVE-2020-20521

Cross Site Scripting vulnerability found in KiteCMS v.1.1 allows a remote attacker to execute arbitrary code via the comment parameter...

6.1CVSS6.6AI score
Exploits0References1
Cvelist
Cvelist
added 2023/04/04 12:0 a.m.13 views

CVE-2020-20521

Cross Site Scripting vulnerability found in KiteCMS v.1.1 allows a remote attacker to execute arbitrary code via the comment parameter...

6.4AI score0.00565EPSS
Exploits1References1
CVE
CVE
added 2023/04/04 12:0 a.m.52 views

CVE-2020-20521

CVE-2020-20521 is a Cross Site Scripting vulnerability in KiteCMS v1.1 that enables a remote attacker to execute arbitrary code via the comment parameter. The CVSS v3.1 base score is 6.1 (Medium); attack vector Network, user interaction Required, with a Changed scope and Confidentiality/Integrity...

6.1CVSS6.4AI score0.00565EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/12/16 4:15 p.m.1 views

CVE-2022-20521

In sdpufindmostspecificserviceuuid of sdputils.cc, there is a possible way to crash Bluetooth due to a missing null check. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

5CVSS5.9AI score0.00165EPSS
Exploits0References1
CVE
CVE
added 2022/12/16 12:0 a.m.90 views

CVE-2022-20521

CVE-2022-20521 concerns a Bluetooth DoS in Android 13 caused by a missing null check in sdpu_find_most_specific_service_uuid (sdp_utils.cc). The vulnerability can crash Bluetooth, leading to local denial of service with no additional privileges required; exploitation requires user interaction. Do...

5CVSS5AI score0.00165EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/03/19 6:15 p.m.10 views

CVE-2019-20521

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the api/ URI...

7.4CVSS6.3AI score0.00786EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/03/19 5:52 p.m.13 views

CVE-2019-20521

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the api/ URI...

7.4CVSS6.1AI score0.00786EPSS
Exploits1References1
CVE
CVE
added 2020/03/19 5:52 p.m.63 views

CVE-2019-20521

CVE-2019-20521 affects ERPNext 11.1.47, where a reflected XSS vulnerability can be triggered via PATH_INFO to the api/ URI. The connected documents confirm the existence of this reflected XSS issue and its target product/version, but do not provide concrete exploitation details, specific vulnerab...

7.4CVSS5.9AI score0.00786EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder