Lucene search
K

7613 matches found

Cvelist
Cvelist
added 2022/01/14 5:1 a.m.15 views

CVE-2022-20647 Cisco Security Manager Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...

6.1CVSS6.4AI score0.00759EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/01/14 5:1 a.m.13 views

CVE-2022-20647 Cisco Security Manager Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...

6.1CVSS6.7AI score0.00759EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/01/14 5:1 a.m.11 views

CVE-2022-20646 Cisco Security Manager Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...

6.1CVSS6.7AI score0.00759EPSS
Exploits0References1
CVE
CVE
added 2022/01/14 5:1 a.m.93 views

CVE-2022-20645

CVE-2022-20645 concerns Cisco Security Manager. The issue is cross-site scripting via the web-based management interface caused by inadequate input validation. An unauthenticated, remote attacker can lure a user to click a crafted link to execute arbitrary script code in the interface context or ...

6.1CVSS6.2AI score0.00759EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/01/14 5:1 a.m.26 views

CVE-2022-20645 Cisco Security Manager Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...

6.1CVSS6.4AI score0.00759EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/01/14 5:0 a.m.22 views

CVE-2022-20644 Cisco Security Manager Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...

6.1CVSS6.4AI score0.00759EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/01/14 5:0 a.m.12 views

CVE-2022-20643 Cisco Security Manager Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...

6.1CVSS6.7AI score0.00759EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/01/14 5:0 a.m.20 views

CVE-2022-20641 Cisco Security Manager Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...

6.1CVSS6.4AI score0.00759EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/01/14 5:0 a.m.16 views

CVE-2022-20640 Cisco Security Manager Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...

6.1CVSS6.4AI score0.00759EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/14 12:0 a.m.16 views

Cisco Security Manager Cross-Site Scripting Vulnerability (CNVD-2022-06386)

Cisco Security Manager CSM is a set of enterprise-class management applications from Cisco, which are used to configure firewall, VPN, and intrusion protection security services on Cisco networks and security devices. cross-site scripting vulnerability exists in Cisco Security Manager, which stem...

6.1CVSS1.4AI score0.00759EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/14 12:0 a.m.13 views

Cisco Security Manager Cross-Site Scripting Vulnerability (CNVD-2022-06381)

Cisco Security Manager CSM is a set of enterprise-class management applications from Cisco, which are used to configure firewall, VPN, and intrusion protection security services on Cisco networks and security devices. cross-site scripting vulnerability exists in Cisco Security Manager, which can ...

6.1CVSS4.6AI score0.00759EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/01/14 12:0 a.m.3 views

PT-2022-15501 · Sap · Sap S/4Hana

Name of the Vulnerable Software and Affected Versions: SAP S/4HANA versions 100 through 106 Description: The issue concerns the F0743 Create Single Payment application, which fails to check uploaded or downloaded files. This oversight allows an attacker with basic user rights to execute arbitrary...

8.1CVSS8.2AI score0.00849EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/01/12 12:0 a.m.3 views

Cisco Security Manager 跨站脚本漏洞

Cisco Security Manager CSM is a set of enterprise-class management applications from Cisco, which are used to configure firewall, VPN, and intrusion protection security services on Cisco networks and security devices. cross-site scripting vulnerability exists in Cisco Security Manager, which can ...

6.1CVSS5.7AI score0.00759EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/01/12 12:0 a.m.6 views

Cisco Security Manager 跨站脚本漏洞

Cisco Security Manager CSM is a set of enterprise-class management applications from Cisco USA that are used to configure firewall, VPN, and intrusion protection security services on Cisco networks and security devices.Cisco Security Manager is vulnerable to a cross-site scripting vulnerability...

6.1CVSS5.8AI score0.00759EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/12/22 12:0 a.m.3 views

Lemon OA 跨站脚本漏洞

Lemon OA is an open source office OA system developed by XuHuisheng personal developer using the Java language.Lemon OA version V1.10.0 has a security vulnerability that originates from the potrtalItemName parameter in webPortalController.java. An attacker can use the vulnerability to execute...

6.1CVSS6AI score0.00831EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/12/01 2:15 a.m.16 views

CVE-2021-20858

Cross-site scripting vulnerability in ELECOM LAN router WRC-2533GHBK-I firmware v1.20 and prior allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...

6AI score0.00585EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/12/01 2:15 a.m.14 views

CVE-2021-20856

Cross-site scripting vulnerability in ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...

6AI score0.00585EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/12/01 2:15 a.m.16 views

CVE-2021-20847

Cross-site scripting vulnerability in Wi-Fi STATION SH-52A 38JP111G, 38JP111J, 38JP111K, 38JP111L, 38JP126F, 38JP126G, 38JP126J, 38JP203B, and 38JP203C allows a remote unauthenticated attacker to inject an arbitrary script via WebUI of the device...

6.4AI score0.00815EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/11/30 12:0 a.m.35 views

Liferay Portal 7.3.2 < 7.3.6 XSS

Liferay Portal 7.3.2 prior to 7.3.6 is affected by a cross-site scripting XSS vulnerability in its redirect module component due to improper validation of user-supplied input before returning it to users. An unauthenticated, remote attacker can exploit this, by convincing a user to click a...

6.1CVSS6.4AI score0.00796EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2021/11/29 6:0 p.m.22 views

Cross-site Scripting in github.com/schollz/rwtxt

Cross-site scripting vulnerability in rwtxt versions prior to v1.8.6 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.1CVSS5.2AI score0.00877EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder