CVE-2024-36217

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-36217 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2024-36217

CVE-2024-36217 affects Adobe Experience Manager (AEM) 6.5.20 and earlier. The vulnerability is a stored XSS in vulnerable form fields, allowing malicious JavaScript to run in a victim’s browser when loading the page containing the field. The CVE entry notes a MEDIUM base score (CVSS 3.1: 5.4) wit...

CVE-2023-36217

creationtimestamp| type| source ---|---|--- 2023-08-03 22:40:12+00:00| seen| https://t.me/cibsecurity/67721...

CVE-2023-36217

Cross Site Scripting vulnerability in Xoops CMS v.2.5.10 allows a remote attacker to execute arbitrary code via the category name field of the image manager function...

CVE-2023-36217

Xoops CMS v2.5.10 contains a Cross Site Scripting vulnerability in the category name field of the image manager function, enabling a remote attacker to execute arbitrary code. The issue is described as high-severity (CRITICAL) with CVSSv3.1 metrics; exploitation is demonstrated in public referenc...

CVE-2021-36217

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-3502. Reason: This candidate is a duplicate of CVE-2021-3502. Notes: All CVE users should reference CVE-2021-3502 instead of this candidate. A...

OESA-2021-1273 avahi security update

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. This enables you to plug your laptop or computer into a network and instantly be able to view other people who you can chat with, find printers to print to or find files being shared...

CVE-2021-36217

creationtimestamp| type| source ---|---|--- 2021-07-07 22:37:59+00:00| seen| https://t.me/cibsecurity/25987...

CVE-2021-36217

...

CVE-2021-36217

CVE-2021-36217 is rejected/not used; refer to CVE-2021-3502.

CVE-2020-36217

The CVE-2020-36217 issue concerns the may_queue crate (through 2020-11-10) for Rust, where the Queue type lacks Send/Sync bounds. This omission can enable memory corruption in concurrent contexts, as reported in multiple sources (e.g., RUSTSEC-2020-0111 and related advisories). The vulnerability ...

HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36217)

HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...