CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2015/06/15 3:59 p.m.•18 views

CVE-2015-4093

Cross-site scripting XSS vulnerability in Elasticsearch Kibana 4.x before 4.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.6AI score0.00237EPSS

Exploits0References4

Cvelist•added 2015/06/15 3:0 p.m.•21 views

CVE-2015-4093

Cross-site scripting XSS vulnerability in Elasticsearch Kibana 4.x before 4.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.6AI score0.00237EPSS

Exploits0References4

CVE•added 2015/06/15 3:0 p.m.•64 views

CVE-2015-4093

Elasticsearch Kibana 4.x prior to 4.0.3 is vulnerable to cross-site scripting (XSS). The vulnerability is described as allowing remote attackers to inject arbitrary web script or HTML via unspecified vectors. Affected product is Kibana 4.x; the issue stems from an XSS flaw in versions before 4.0....

4.3CVSS5.7AI score0.00237EPSS

Exploits0References4Affected Software1

securityvulns•added 2015/06/14 12:0 a.m.•113 views

Kibana vulnerability CVE-2015-4093

Summary: Kibana versions 4.0.0, 4.0.1 and 4.0.2 are vulnerable to a cross-site scripting XSS attack. The attack allows execution of arbitrary JavaScript in the context of the user’s browser. We have been assigned CVE-2015-4093 for this issue. Fixed versions: Versions 4.0.3 and 4.1.0 have addresse...

4.3CVSS5.9AI score0.00237EPSS

Exploits0