Lucene search
K

7613 matches found

CNNVD
CNNVD
added 2022/06/02 12:0 a.m.20 views

Delta Controls enteliTOUCH 跨站脚本漏洞

Delta Controls enteliTOUCH is a touchscreen building controller from Delta Controls Canada. A security vulnerability exists in Delta Controls enteliTOUCH versions 3.40.3935, 3.40.3706, and 3.33.4005, which stems from a cross-site scripting vulnerability discovered via the Username parameter. The...

6.1CVSS6.3AI score0.00725EPSS
Exploits2References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2022/06/01 4:39 a.m.3 views

WordPress Plugin "Modern Events Calendar Lite" vulnerable to cross-site scripting

Overview WordPress Plugin "Modern Events Calendar Lite" provided by Webnus contains a stored cross-site scripting vulnerability CWE-79. Tsutomu Aramaki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

5.4CVSS5.9AI score0.00525EPSS
Exploits0References5
NVD
NVD
added 2022/05/27 2:15 p.m.14 views

CVE-2022-20666

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS0.00685EPSS
Exploits0References1
NVD
NVD
added 2022/05/27 2:15 p.m.14 views

CVE-2022-20669

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS0.00685EPSS
Exploits0References1
NVD
NVD
added 2022/05/27 2:15 p.m.20 views

CVE-2022-20674

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS0.00685EPSS
Exploits0References1
NVD
NVD
added 2022/05/27 2:15 p.m.17 views

CVE-2022-20670

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS0.00685EPSS
Exploits0References1
Prion
Prion
added 2022/05/27 2:15 p.m.14 views

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

4.3CVSS5.9AI score0.00685EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/05/27 2:15 p.m.20 views

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

4.3CVSS5.9AI score0.00685EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/05/27 2:15 p.m.15 views

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

4.3CVSS5.9AI score0.00685EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/05/27 2:15 p.m.16 views

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

4.3CVSS5.9AI score0.00685EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/05/27 2:15 p.m.20 views

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

4.3CVSS5.9AI score0.00685EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/05/27 2:5 p.m.15 views

CVE-2022-20674 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS6.1AI score0.00685EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/27 2:5 p.m.23 views

CVE-2022-20673 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS6.1AI score0.00685EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/27 2:5 p.m.26 views

CVE-2022-20672 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS6.1AI score0.00685EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/27 2:5 p.m.22 views

CVE-2022-20670 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS6.1AI score0.00685EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/05/27 2:5 p.m.9 views

CVE-2022-20669 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS6.1AI score0.00685EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/27 2:5 p.m.24 views

CVE-2022-20668 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS6.1AI score0.00685EPSS
Exploits0References1
CVE
CVE
added 2022/05/27 2:5 p.m.182 views

CVE-2022-20667

Cisco CSPC (Common Services Platform Collector) suffers cross-site scripting (XSS) flaws in its web-based management interface due to insufficient input validation. Exploitation requires a user to click a crafted link, enabling an attacker to run arbitrary script code in the interface context or ...

6.1CVSS6AI score0.00685EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/05/27 2:5 p.m.24 views

CVE-2022-20666 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector CSPC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. These vulnerabilities are due to insufficient...

6.1CVSS6.1AI score0.00685EPSS
Exploits0References1
Prion
Prion
added 2022/05/25 1:15 a.m.13 views

Cross site scripting

A cross-site scripting XSS vulnerability in uploadConfirm.php of LimeSurvey v5.3.9 and below allows attackers to execute arbitrary web scripts or HTML via a crafted plugin...

4.3CVSS5.9AI score0.00734EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder