Lucene search
K

11 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-37191 Malicious code in trezor-link-chrome-extension (npm)

The package trezor-link-chrome-extension was found to contain malicious code...

7.2AI score
Exploits0
Cvelist
Cvelist
added 2023/07/11 12:0 a.m.20 views

CVE-2023-37191

A stored cross-site scripting XSS vulnerability in Issabel issabel-pbx v.4.0.0-6 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Group and Description parameters...

5.2AI score0.00577EPSS
Exploits1References2
CVE
CVE
added 2023/07/11 12:0 a.m.39 views

CVE-2023-37191

CVE-2023-37191 is a stored cross-site scripting (XSS) in Issabel issabel-pbx v4.0.0-6. The vulnerability allows an attacker to inject arbitrary web scripts or HTML via payloads into the Group and Description fields, leading to execution in the victim’s browser. Connected documents confirm the aff...

4.8CVSS4.9AI score0.00577EPSS
Exploits1References2Affected Software1
Circl
Circl
added 2022/09/14 2:25 a.m.3 views

CVE-2022-37191

creationtimestamp| type| source ---|---|--- 2022-09-14 02:25:50+00:00| seen| https://t.me/cibsecurity/49746...

6.5CVSS6.3AI score0.02497EPSS
Exploits1References1
OSV
OSV
added 2022/09/13 11:15 p.m.2 views

CVE-2022-37191

The component "cuppa/api/index.php" of CuppaCMS v1.0 is Vulnerable to LFI. An authenticated user can read system files via crafted POST request using function parameter value as LFI payload...

6.5CVSS5.8AI score0.02497EPSS
Exploits1References2
CVE
CVE
added 2022/09/13 10:7 p.m.298 views

CVE-2022-37191

CVE-2022-37191 affects CuppaCMS v1.0. The vulnerability is an authenticated Local File Inclusion in the cuppa/api/index.php component triggered by crafting a POST request whose function parameter is used as LFI payload, enabling an attacker with valid credentials to read system files. The Nuclei ...

6.5CVSS6.2AI score0.02497EPSS
Exploits1References2Affected Software1
Circl
Circl
added 2021/09/14 2:20 p.m.5 views

CVE-2021-37191

creationtimestamp| type| source ---|---|--- 2021-09-14 14:20:52+00:00| seen| https://t.me/cibsecurity/28774...

4.3CVSS4.6AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2021/09/14 11:15 a.m.1 views

CVE-2021-37191

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. An unauthenticated attacker in the same network of the affected system could brute force the usernames from the affected software...

4.3CVSS5.7AI score0.00369EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/09/14 10:47 a.m.6 views

CVE-2021-37191

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. An unauthenticated attacker in the same network of the affected system could brute force the usernames from the affected software...

5AI score0.00369EPSS
Exploits0References1
CVE
CVE
added 2021/09/14 10:47 a.m.58 views

CVE-2021-37191

CVE-2021-37191 affects Siemens SINEMA Remote Connect Server: all versions prior to 3.0 SP2 are vulnerable to an unauthenticated attacker on the same network brute-forcing usernames. The Red Hat and CNVD/Wikipedia entries corroborate the impact as an in-network username enumeration risk; ICSA note...

4.3CVSS4.6AI score0.00369EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2012/05/15 12:0 a.m.6 views

CVE-2012-2913

creationtimestamp| type| source ---|---|--- 2012-05-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37191 2012-05-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37192...

4.3CVSS5.8AI score0.03817EPSS
Exploits1References2
Rows per page
Query Builder