Lucene search
+L

13 matches found

OSV
OSV
added 2024/02/01 12:15 p.m.4 views

CVE-2023-51520

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPdevelop / Oplugins WP Booking Calendar allows Stored XSS.This issue affects WP Booking Calendar: from n/a before 9.7.4...

5.4CVSS5.8AI score0.00328EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/12/26 12:0 a.m.4 views

Directus 安全漏洞

Directus is a real-time Api and application dashboard. It is used to manage Sql database content. A security vulnerability exists in Directus versions prior to 9.7.0 that stems from the default setting of CORSORIGIN and CORSENABLED to true...

9.8CVSS8.2AI score0.00927EPSS
Exploits0References6
OSV
OSV
added 2022/05/04 2:15 p.m.4 views

CVE-2022-25784

Cross-site Scripting XSS vulnerability in Web GUI of SiteManager allows logged-in user to inject scripting. This issue affects: Secomea SiteManager all versions prior to 9.7...

4.8CVSS5.4AI score0.0057EPSS
Exploits0References1
OSV
OSV
added 2022/05/04 2:15 p.m.5 views

CVE-2022-25783

Insufficient Logging vulnerability in web server of Secomea GateManager allows logged in user to issue improper queries without logging. This issue affects: Secomea GateManager versions prior to 9.7...

4.3CVSS5.8AI score0.00584EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/05/04 2:15 p.m.4 views

CVE-2022-25785

Stack-based Buffer Overflow vulnerability in SiteManager allows logged-in or local user to cause arbitrary code execution. This issue affects: Secomea SiteManager all versions prior to 9.7...

7.2CVSS7.2AI score0.00919EPSS
Exploits0References2
OSV
OSV
added 2022/05/04 2:15 p.m.5 views

CVE-2022-25787

Information Exposure Through Query Strings in GET Request vulnerability in LMM API of Secomea GateManager allows system administrator to hijack connection. This issue affects: Secomea GateManager all versions prior to 9.7...

6.7CVSS5.8AI score0.00232EPSS
Exploits0References1
OSV
OSV
added 2022/05/04 2:15 p.m.3 views

CVE-2021-32010

Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to...

8.1CVSS5.8AI score0.00216EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/05/04 12:0 a.m.7 views

Secomea GateManager 资源管理错误漏洞

Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerabilities exist in versions prior to Secomea GateManager 9.7, which could be exploited to allow logged-in users to write text entries in the audit log...

4.3CVSS5.3AI score0.00517EPSS
Exploits0References2
OSV
OSV
added 2022/03/22 12:15 a.m.6 views

CVE-2022-0386

A post-auth SQL injection vulnerability in the Mail Manager potentially allows an authenticated attacker to execute code in Sophos UTM before version 9.710...

8.8CVSS7.5AI score0.01154EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/05 12:0 a.m.4 views

Foxit Reader and PhantomPDF Resource Management Error Vulnerability (CNVD-2020-32444)

Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A buffer overflow vulnerability exists in Foxit Reader versions prior to 9.7.1 and PhantomPDF versions prior to 9.7.1. The vulnerability stems from a networked system or product that performs operations ...

7.5CVSS7.3AI score0.0153EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/05 12:0 a.m.6 views

Foxit Reader and PhantomPDF Resource Management Error Vulnerability (CNVD-2020-32084)

Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A security vulnerability exists in Foxit Reader versions prior to 9.7.2 and PhantomPDF versions prior to 9.7.2. The vulnerability can be exploited by an attacker to cause an application crash resource...

7.5CVSS6.7AI score0.0153EPSS
Exploits0References1
OSV
OSV
added 2017/10/19 5:29 p.m.2 views

CVE-2017-10099

Vulnerability in the SPARC M7, T7, S7 based Servers component of Oracle Sun Systems Products Suite subcomponent: Firmware. The supported version that is affected is Prior to 9.7.6.b. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where SPARC M7,...

4.4CVSS7.3AI score0.00362EPSS
Exploits0References2
OSV
OSV
added 2017/09/22 4:29 p.m.6 views

CVE-2017-14080

Authentication bypass vulnerability in Trend Micro Mobile Security Enterprise versions before 9.7 Patch 3 allows attackers to access a specific part of the console using a blank password...

9.8CVSS5.8AI score0.02959EPSS
Exploits0References2
Rows per page
Query Builder