Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:8 a.m.10 views

CVE-2019-20768

ServiceNow IT Service Management Kingston through Patch 14-1, London through Patch 7, and Madrid before patch 4 allow stored XSS via crafted sysparmitemguid and sysid parameters in an Incident Request to servicecatalog.do...

5.4CVSS5.7AI score0.00719EPSS
Exploits1References1
Circl
Circl
added 2025/12/02 6:40 a.m.7 views

CVE-2025-20768

creationtimestamp| type| source ---|---|--- 2025-12-02 06:40:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6ydizc3iy2q...

7.8CVSS5.8AI score0.00077EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:8 p.m.6 views

CVE-2021-20768

Operational restrictions bypass vulnerability in Scheduler and MultiReport of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to delete the data of Scheduler and MultiReport without the appropriate privilege...

4.3CVSS6.6AI score0.00818EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:59 p.m.6 views

CVE-2018-20768

An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. An attacker can execute PHP code by leveraging a writable file...

9.8CVSS7.5AI score0.01235EPSS
Exploits0References1
NVD
NVD
added 2024/11/22 8:15 p.m.25 views

CVE-2024-30376

Famatech Advanced IP Scanner Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Famatech Advanced IP Scanner. An attacker must first obtain the ability to execute low-privileged...

7.3CVSS0.00414EPSS
Exploits0References1
Circl
Circl
added 2024/03/18 7:27 p.m.6 views

CVE-2024-20768

creationtimestamp| type| source ---|---|--- 2024-03-18 19:27:08+00:00| seen| https://t.me/ctinow/210868...

5.4CVSS4.8AI score0.00418EPSS
Exploits0References1
CVE
CVE
added 2024/03/18 5:54 p.m.69 views

CVE-2024-20768

CVE-2024-20768 is a stored XSS in Adobe Experience Manager (AEM) 6.5.19 and earlier. The vulnerability allows injected JavaScript in vulnerable form fields, which executes in a victim’s browser when loading the page containing the field. Affected product/versions: AEM 6.5.19 and earlier. Root cau...

5.4CVSS5.3AI score0.00418EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/03/18 5:54 p.m.21 views

CVE-2024-20768 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.2AI score0.00418EPSS
Exploits0References1
Circl
Circl
added 2022/07/07 12:14 a.m.7 views

CVE-2022-20768

creationtimestamp| type| source ---|---|--- 2022-07-07 00:14:42+00:00| seen| https://t.me/cibsecurity/45711...

4.9CVSS5AI score0.00911EPSS
Exploits0References1
Circl
Circl
added 2021/08/18 12:16 p.m.7 views

CVE-2021-20768

creationtimestamp| type| source ---|---|--- 2021-08-18 12:16:48+00:00| seen| https://t.me/cibsecurity/27487...

4.3CVSS4.7AI score0.00818EPSS
Exploits0References1
OSV
OSV
added 2021/08/18 6:15 a.m.5 views

CVE-2021-20768

Operational restrictions bypass vulnerability in Scheduler and MultiReport of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to delete the data of Scheduler and MultiReport without the appropriate privilege...

4.3CVSS6.1AI score0.00818EPSS
Exploits0References2
CVE
CVE
added 2021/08/18 5:36 a.m.52 views

CVE-2021-20768

The CVE-2021-20768 issue affects Cybozu Garoon 4.0.0 to 5.0.2. It is an operational restrictions bypass vulnerability that allows a remote authenticated attacker to delete data in Scheduler and MultiReport without proper privileges. Connected sources corroborate the affected product range and the...

4.3CVSS4.7AI score0.00818EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2020/05/06 2:29 a.m.6 views

CVE-2019-20768

creationtimestamp| type| source ---|---|--- 2020-05-06 02:29:11+00:00| seen| https://t.me/cibsecurity/11856...

5.4CVSS5.5AI score0.00719EPSS
Exploits1References1
CVE
CVE
added 2020/05/05 9:13 p.m.42 views

CVE-2019-20768

CVE-2019-20768 affects ServiceNow IT Service Management ( Kingston through Patch 14-1, London through Patch 7, Madrid before patch 4). The issue is a stored XSS vulnerability triggered by crafted sysparm_item_guid and sys_id parameters in an Incident Request to service_catalog.do. The connected d...

5.4CVSS5.2AI score0.00719EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2019/02/10 5:29 p.m.7 views

CVE-2018-20768

An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. An attacker can execute PHP code by leveraging a writable file...

9.8CVSS5.9AI score0.01235EPSS
Exploits0References1
NVD
NVD
added 2019/02/10 5:29 p.m.26 views

CVE-2018-20768

An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. An attacker can execute PHP code by leveraging a writable file...

9.8CVSS9.7AI score0.01235EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/02/10 5:0 p.m.29 views

CVE-2018-20768

An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. An attacker can execute PHP code by leveraging a writable file...

9.7AI score0.01235EPSS
Exploits0References1
CVE
CVE
added 2019/02/10 5:0 p.m.57 views

CVE-2018-20768

CVE-2018-20768 affects Xerox WorkCentre models (3655/3655i, 58XX/58XXi, 59XX/59XXi, 6655/6655i, 72XX/72XXi, 78XX/78XXi, 7970/7970i, EC7836/EC7856) prior to firmware R18-05 073.xxx.0487.15000. The vulnerability lets an attacker execute PHP code by abusing a writable file on the device, with networ...

9.8CVSS9.6AI score0.01235EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder