CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2022/11/15 3:15 p.m.•3 views

CVE-2022-42001

Cross-site Scripting XSS vulnerability in BlueSpiceBookshelf extension of BlueSpice allows user with regular account and edit permissions to inject arbitrary HTML into the book navigation...

5.4CVSS5.9AI score0.00298EPSS

Exploits0References1

Positive Technologies•added 2022/11/15 12:0 a.m.•3 views

PT-2022-26206 · Unknown +1 · Bluespicebookshelf +1

Name of the Vulnerable Software and Affected Versions: BlueSpice affected versions not specified Description: The issue allows a user with a regular account and edit permissions to inject arbitrary HTML into the book navigation, which is a result of a Cross-site Scripting XSS vulnerability in the...

5.4CVSS5.2AI score0.00298EPSS

Exploits0References3

CNNVD•added 2022/11/15 12:0 a.m.•2 views

BlueSpice 跨站脚本漏洞

BlueSpice is free Wiki software from BlueSpice based on the MediaWiki engine. A cross-site scripting vulnerability exists in BlueSpice's BlueSpiceBookshelf extension. An attacker could exploit the vulnerability to inject arbitrary HTML into the book navigation...

5.4CVSS5.7AI score0.00298EPSS

Exploits0References3

NVD•added 2014/10/09 10:55 a.m.•21 views

CVE-2014-8068

Adobe Digital Editions DE 4 does not use encryption for transmission of data to adelogs.adobe.com, which allows remote attackers to obtain sensitive information by sniffing the network, as demonstrated by book-navigation information...

5CVSS6.1AI score0.00398EPSS

Exploits0References5