CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross Site Scripting vulnerabiltiy in Badaso v.0.0.1 thru v.2.9.7 allows a remote attacker to execute arbitrary code via a crafted payload to the Name of member parameter in the add new member function...

5.4CVSS7.2AI score0.00405EPSS

Exploits1

Positive Technologies•added 2023/08/30 12:0 a.m.•3 views

PT-2023-26710 · Badaso · Badaso

Name of the Vulnerable Software and Affected Versions: Badaso versions 0.0.1 through 2.9.7 Description: The issue allows a remote attacker to execute arbitrary code via a crafted payload to the Name of member parameter in the add new member function. This enables the execution of arbitrary code,...

5.4CVSS5.9AI score0.00405EPSS

Exploits1References7

Vulnrichment•added 2022/11/25 12:0 a.m.•5 views

CVE-2022-41705

Badaso version 2.6.3 allows an unauthenticated remote attacker to execute arbitrary code remotely on the server. This is possible because the application does not properly validate the data uploaded by users...

9.8AI score0.1183EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by