Lucene search
K

21 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/21 8:37 p.m.4 views

CVE-2026-33518

An incorrect privilege assignment vulnerability exists in Esri Portal for ArcGIS 11.5 in Windows and Linux that allows highly privileged users to create developer credentials that may grant more privileges than expected...

9.8CVSS5.8AI score0.00295EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-31606

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00209EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-31607

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00209EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-31611

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00207EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2025-31608

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00209EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/30 6:41 p.m.10 views

CVE-2025-57878

There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote, unauthenticated attacker to craft a URL that could redirect a victim to an arbitrary website, simplifying phishing attacks...

6.1CVSS7AI score0.0023EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/30 6:41 p.m.16 views

CVE-2025-57874

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote authenticated attacker with administrative access to supply a crafted string which would execute arbitrary JavaScript code in the browser...

4.8CVSS6.6AI score0.00209EPSS
Exploits0References1
OSV
OSV
added 2025/09/29 7:15 p.m.6 views

CVE-2025-57878

There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote, unauthenticated attacker to craft a URL that could redirect a victim to an arbitrary website, simplifying phishing attacks...

6.1CVSS5.9AI score0.0023EPSS
Exploits0References1
NVD
NVD
added 2025/09/29 7:15 p.m.3 views

CVE-2025-57878

There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote, unauthenticated attacker to craft a URL that could redirect a victim to an arbitrary website, simplifying phishing attacks...

6.1CVSS0.0023EPSS
Exploits0References1
NVD
NVD
added 2025/09/29 7:15 p.m.4 views

CVE-2025-57874

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote authenticated attacker with administrative access to supply a crafted string which would execute arbitrary JavaScript code in the browser...

4.8CVSS0.00209EPSS
Exploits0References1
OSV
OSV
added 2025/09/29 7:15 p.m.4 views

CVE-2025-57874

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote authenticated attacker with administrative access to supply a crafted string which would execute arbitrary JavaScript code in the browser...

4.8CVSS5.6AI score0.00209EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/29 6:37 p.m.20 views

CVE-2025-57873 BUG-000175222 - Reflected XSS vulnerability in Portal for ArcGIS.

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote authenticated attacker with administrative access to supply a crafted string which would execute arbitrary JavaScript code in the browser...

4.8CVSS0.00209EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/29 6:35 p.m.3 views

CVE-2025-57875 BUG-000164122 - Reflected XSS vulnerability in Portal for ArcGIS.

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote authenticated attacker with administrative access to supply a crafted string which would execute arbitrary JavaScript code in the browser...

4.8CVSS6.2AI score0.00209EPSS
Exploits0References1
CVE
CVE
added 2025/09/29 6:34 p.m.22 views

CVE-2025-57877

CVE-2025-57877 affects Esri Portal for ArcGIS

4.8CVSS6.2AI score0.00209EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/09/29 6:32 p.m.19 views

CVE-2025-57876

CVE-2025-57876 is a stored XSS vulnerability in Esri Portal for ArcGIS 11.4 and earlier. An authenticated attacker with high privileges can inject a file containing an XSS script; when loaded, it could execute arbitrary JavaScript in the victim’s browser and potentially disclose a privileged toke...

4.8CVSS6.3AI score0.00207EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/29 6:32 p.m.9 views

CVE-2025-57876 Stored XSS vulnerability in Portal for ArcGIS

There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS 11.4 and below that may allow a remote, authenticated attacker to inject malicious a file with an embedded xss script which when loaded could potentially execute arbitrary JavaScript code in the victim’s browser. The...

4.8CVSS0.00207EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/29 12:0 a.m.6 views

PT-2025-39860

Name of the Vulnerable Software and Affected Versions Esri Portal for ArcGIS versions 11.4 and below Description A reflected cross site scripting issue exists in Esri Portal for ArcGIS. A remote attacker with administrative access can potentially execute arbitrary JavaScript code in a user's...

4.8CVSS6.3AI score0.00209EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/29 12:0 a.m.9 views

PT-2025-39864

Name of the Vulnerable Software and Affected Versions Esri Portal for ArcGIS versions 11.4 and below Description A reflected cross site scripting issue exists in Esri Portal for ArcGIS that could allow a remote attacker with administrative access to execute arbitrary JavaScript code in a user's...

4.8CVSS6.2AI score0.00209EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/29 12:0 a.m.10 views

PT-2025-39863

Name of the Vulnerable Software and Affected Versions Esri Portal for ArcGIS versions 11.4 and below Description A stored Cross-site Scripting issue exists in Esri Portal for ArcGIS. A remote, authenticated attacker can inject a malicious file containing an XSS script. When loaded, this script...

4.8CVSS5.7AI score0.00207EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/02/09 12:0 a.m.8 views

PT-2024-7831 · Esri · Esri Portal For Arcgis

Name of the Vulnerable Software and Affected Versions: Esri Portal for ArcGIS versions 11.1 and below Description: The issue is related to a reflected cross-site scripting problem, where an attacker could potentially execute arbitrary JavaScript code in their own browser. This could be achieved b...

5.5CVSS6.3AI score0.00338EPSS
Exploits0References9
Rows per page
Query Builder