CVE-2024-25831

F-logic DataCube3 Version 1.0 is affected by a reflected cross-site scripting XSS vulnerability due to improper input sanitization. An authenticated, remote attacker can execute arbitrary JavaScript code in the web management interface...

CVE-2022-25831

Improper access control vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical attackers to access secured data in certain conditions...

CVE-2024-25831

F-logic DataCube3 Version 1.0 is affected by a reflected cross-site scripting XSS vulnerability due to improper input sanitization. An authenticated, remote attacker can execute arbitrary JavaScript code in the web management interface...

CVE-2024-25831

Summary: CVE-2024-25831 concerns F-Logic DataCube3 v1.0 with a reflected XSS vulnerability caused by improper input sanitization. The issue allows an authenticated, remote attacker to execute arbitrary JavaScript in the web management interface. The Red Hat, JVN/JPCERT-related entries and multipl...

CVE-2023-25831

creationtimestamp| type| source ---|---|--- 2023-05-10 00:39:04+00:00| seen| https://t.me/cibsecurity/63706 2025-04-10 18:49:26+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11309...

CVE-2023-25831

There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.9.1and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser...

CVE-2023-25831 BUG-000154236 There is a reflected cross-site scripting (XSS) vulnerability in Portal for ArcGIS.

There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.9.1and below which may allow a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser...

CVE-2023-25831

CVE-2023-25831 is a reflected XSS in Esri Portal for ArcGIS. Affects Portal for ArcGIS versions 10.7.1 through 10.9.1 (per PT-2023-20337 and NVD/NVD-derived entries). The vulnerability arises when a crafted link could cause arbitrary JavaScript execution in a victim’s browser. The core issue is a...

CVE-2022-25831

creationtimestamp| type| source ---|---|--- 2022-04-12 00:22:35+00:00| seen| https://t.me/cibsecurity/40536...

CVE-2022-25831

Improper access control vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical attackers to access secured data in certain conditions...

CVE-2022-25831

Improper access control vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical attackers to access secured data in certain conditions...

CVE-2022-25831

CVE-2022-25831 affects Samsung S Secure prior to SMR Apr-2022 Release 1 and is an improper access control vulnerability, enabling physical attackers to access secured data under certain conditions. The connected documents identify the affected component as S Secure and indicate the remediation pa...

CVE-2021-25831

creationtimestamp| type| source ---|---|--- 2021-03-01 18:43:15+00:00| seen| https://t.me/cibsecurity/24297 2021-10-30 14:32:34+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/4625...

CVE-2021-25831

ONLYOFFICE DocumentServer (core module) vulnerability CVE-2021-25831 affects v4.0.0-9-v5.6.3. A file extension handling issue arises when converting a crafted PPTT file to PPTX, exploited through a chain of two other improper string handling bugs to achieve remote code execution on the server. Th...