Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/12/31 12:2 a.m.27 views

CVE-2025-66823

An HTML Injection vulnerability in TrueConf server 5.5.2.10813 in the conference description field allows an attacker to inject arbitrary HTML in the Create/Edit conference functionality. The payload will be triggered when the victim opens the Conference Info page conference url/info...

5.4CVSS7.1AI score0.00159EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/30 9:30 p.m.5 views

EUVD-2025-205848

An HTML Injection vulnerability in TrueConf server 5.5.2.10813 in the conference description field allows an attacker to inject arbitrary HTML in the Create/Edit conference functionality. The payload will be triggered when the victim opens the Conference Info page conference url/info...

6.5AI score0.00159EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-18290

Malware in sbrugna...

6.1CVSS6.3AI score0.00634EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:22 p.m.9 views

CVE-2020-25611

The AWV portal of Mitel MiCollab before 9.2 could allow an attacker to gain access to conference information by sending arbitrary code due to improper input validation, aka XSS. Successful exploitation could allow an attacker to view user conference information...

6.1CVSS7.3AI score0.00634EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/05/29 12:0 a.m.6 views

The vulnerability of the MiVoice Connect business telephone system’s Mitel VoIP devices lies in the insufficient protection of the website structure, allowing attackers to access user conference information.

The vulnerability of the MiVoice Connect business telephone system’s VoIP devices related to insufficient protection of the website structure. Exploiting this vulnerability can allow a malicious actor to gain access to user conference information...

7.8CVSS7.2AI score0.00624EPSS
Exploits0References4
NVD
NVD
added 2020/12/18 8:15 a.m.19 views

CVE-2020-25611

The AWV portal of Mitel MiCollab before 9.2 could allow an attacker to gain access to conference information by sending arbitrary code due to improper input validation, aka XSS. Successful exploitation could allow an attacker to view user conference information...

6.1CVSS6.5AI score0.00634EPSS
Exploits0References1
OSV
OSV
added 2020/12/18 8:15 a.m.4 views

CVE-2020-25611

The AWV portal of Mitel MiCollab before 9.2 could allow an attacker to gain access to conference information by sending arbitrary code due to improper input validation, aka XSS. Successful exploitation could allow an attacker to view user conference information...

6.1CVSS6.5AI score0.00634EPSS
Exploits0References1
Prion
Prion
added 2020/12/18 8:15 a.m.23 views

Input validation

The AWV portal of Mitel MiCollab before 9.2 could allow an attacker to gain access to conference information by sending arbitrary code due to improper input validation, aka XSS. Successful exploitation could allow an attacker to view user conference information...

4.3CVSS6.5AI score0.00634EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/18 7:11 a.m.19 views

CVE-2020-25611

The AWV portal of Mitel MiCollab before 9.2 could allow an attacker to gain access to conference information by sending arbitrary code due to improper input validation, aka XSS. Successful exploitation could allow an attacker to view user conference information...

6.5AI score0.00634EPSS
Exploits0References1
Rows per page
Query Builder