CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Exploit DB•added 2025/04/04 12:0 a.m.•292 views

Microchip TimeProvider 4100 Grandmaster (Banner Config Modules) 2.4.6 - Stored Cross-Site Scripting (XSS)

Exploit Title: Microchip TimeProvider 4100 Grandmaster Banner Config Modules 2.4.6 - Stored Cross-Site Scripting XSS Exploit Author: Armando Huesca Prida Discovered By: Armando Huesca Prida, Marco Negro, Antonio Carriero, Vito Pistillo, Davide Renna, Manuel Leone, Massimiliano Brolli Date of...

7.7CVSS6.4AI score0.02577EPSS

Exploits3

OSV•added 2024/10/04 8:15 p.m.•3 views

CVE-2024-43687

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Microchip TimeProvider 4100 banner config modules allows Cross-Site Scripting XSS.This issue affects TimeProvider 4100: from 1.0 before 2.4.7...

6.1CVSS5.8AI score

Exploits0References2

Positive Technologies•added 2024/10/04 12:0 a.m.•2 views

PT-2024-30614 · Microchip · Timeprovider 4100

Name of the Vulnerable Software and Affected Versions: Microchip TimeProvider 4100 versions 1.0 through 2.4.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-Site Scripting XSS. This security issue affects the banner config...

7.7CVSS6.7AI score0.02577EPSS

Exploits3References9

Prion•added 2023/09/19 11:15 p.m.•100 views

Sql injection

A SQL injection vulnerability in Nagios XI v5.11.1 and below allows authenticated attackers with announcement banner configuration privileges to execute arbitrary SQL commands via the ID parameter sent to the updatebannermessage function...

6.5CVSS9AI score0.18083EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by