Lucene search
K

29 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:40 p.m.7 views

CVE-2025-40900

An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a malicious report containing an Angular template payload, or a victim can be socially engineered to...

5.1CVSS5.5AI score0.00201EPSS
Exploits0References1
NVD
NVD
added 2026/05/19 2:16 p.m.24 views

CVE-2025-40900

An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a malicious report containing an Angular template payload, or a victim can be socially engineered to...

5.1CVSS0.00201EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/19 1:17 p.m.11 views

EUVD-2025-209892

An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a malicious report containing an Angular template payload, or a victim can be socially engineered to...

5.1CVSS5.8AI score0.00201EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/19 1:17 p.m.39 views

CVE-2025-40900 Angular template injection in Reports in Guardian/CMC before 26.1.0

An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a malicious report containing an Angular template payload, or a victim can be socially engineered to...

5.1CVSS0.00201EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/19 1:17 p.m.10 views

CVE-2025-40900

An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a malicious report containing an Angular template payload, or a victim can be socially engineered to...

5.1CVSS5.8AI score0.00201EPSS
Exploits0References2
CVE
CVE
added 2026/05/19 1:17 p.m.22 views

CVE-2025-40900

CVE-2025-40900 describes an Angular template injection in the Reports functionality of Guardian/CMC prior to version 26.1.0. An authenticated user with report privileges can embed an Angular template payload in a malicious report, which executes in the victim’s browser during viewing/import, pote...

5.1CVSS5.8AI score0.00201EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2026/05/19 1:17 p.m.15 views

CVE-2025-40900 Angular template injection in Reports in Guardian/CMC before 26.1.0

An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a malicious report containing an Angular template payload, or a victim can be socially engineered to...

5.1CVSS5.8AI score0.00201EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/19 12:0 a.m.8 views

Nozomi Networks CMC和Nozomi Networks Guardian 安全漏洞

Nozomi Networks CMC and Nozomi Networks Guardian are both products of Nozomi Networks, a company based in the United States. Nozomi Networks CMC is a network management platform. Nozomi Networks Guardian is a security software. Both Nozomi Networks CMC and Nozomi Networks Guardian have security...

5.1CVSS5.9AI score0.00201EPSS
Exploits0References1
NOZOMI
NOZOMI
added 2026/05/19 12:0 a.m.11 views

Angular template injection in Reports in Guardian/CMC before 26.1.0

Summary An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. Impact An authenticated user with report privileges can define a malicious report containing an Angular template payload, or a victim can be socially...

5.1CVSS5.8AI score0.00201EPSS
Exploits0Affected Software2
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-30093

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00698EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:17 a.m.6 views

CVE-2024-50577

In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via Angular template injection in Hub settings...

5.4CVSS6.2AI score0.00299EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:38 a.m.8 views

CVE-2023-26270

IBM Security Guardium Data Encryption IBM Guardium Cloud Key Manager GCKM 1.10.3 could allow a remote attacker to execute arbitrary code on the system, caused by an angular template injection flaw. By sending specially crafted request, an attacker could exploit this vulnerability to execute...

9.8CVSS7.7AI score0.00698EPSS
Exploits0References1
NVD
NVD
added 2024/10/28 1:15 p.m.16 views

CVE-2024-50577

In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via Angular template injection in Hub settings...

5.4CVSS0.00299EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/28 12:55 p.m.17 views

CVE-2024-50577

In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via Angular template injection in Hub settings...

4.6CVSS0.00299EPSS
Exploits0References1
CVE
CVE
added 2024/10/28 12:55 p.m.72 views

CVE-2024-50577

JetBrains YouTrack is affected prior to version 2024.3.47707. The CVE-2024-50577 issue is described as a stored XSS vulnerability caused by Angular template injection in Hub settings. Impact is cross-site scripting via Hub settings, with overall security values indicating confidentiality/integrit...

5.4CVSS6.2AI score0.00299EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2024/10/28 12:55 p.m.2 views

EUVD-2024-44958

In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via Angular template injection in Hub settings...

5.4CVSS5.8AI score0.00299EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/28 12:55 p.m.8 views

CVE-2024-50577

In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via Angular template injection in Hub settings...

4.6CVSS4.7AI score0.00299EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/28 12:0 a.m.4 views

PT-2024-7634 · Jetbrains · Youtrack

Name of the Vulnerable Software and Affected Versions: JetBrains YouTrack versions prior to 2024.3.47707 Description: The issue is related to a stored XSS vulnerability via Angular template injection in Hub settings. This could allow an attacker to perform cross-site scripting attacks. The...

5.5CVSS6AI score0.00299EPSS
Exploits0References6
OSV
OSV
added 2023/08/28 1:15 a.m.3 views

CVE-2023-26270

IBM Security Guardium Data Encryption IBM Guardium Cloud Key Manager GCKM 1.10.3 could allow a remote attacker to execute arbitrary code on the system, caused by an angular template injection flaw. By sending specially crafted request, an attacker could exploit this vulnerability to execute...

9.8CVSS6.2AI score0.00698EPSS
Exploits0References2
NVD
NVD
added 2023/08/28 1:15 a.m.35 views

CVE-2023-26270

IBM Security Guardium Data Encryption IBM Guardium Cloud Key Manager GCKM 1.10.3 could allow a remote attacker to execute arbitrary code on the system, caused by an angular template injection flaw. By sending specially crafted request, an attacker could exploit this vulnerability to execute...

9.8CVSS8.4AI score0.00698EPSS
Exploits0References2
Rows per page
Query Builder