Lucene search
K

23 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-11033

Malware in sbrugna...

5.3CVSS5.5AI score0.00353EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-20197

Malware in sbrugna...

4.3CVSS6.5AI score0.043EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-11032

Malware in sbrugna...

5.3CVSS5.5AI score0.00341EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-2178

Malware in sbrugna...

5.3CVSS5.5AI score0.00341EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-11991

Malware in sbrugna...

6.5CVSS6.7AI score0.0274EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:8 p.m.8 views

CVE-2020-1103

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF.When users are simultaneously logged in to Microsoft SharePoint Server and visit a...

6.5CVSS6AI score0.0274EPSS
Exploits0References1
HackRead
HackRead
added 2023/03/09 10:36 p.m.23 views

Vulnerability Revealed OpenSea NFT Market Users’ Identities

By Waqas It was a cross-site search XS-Search vulnerability that could be exploited by an attacker to obtain a user's identity. This is a post from HackRead.com Read the original post: Vulnerability Revealed OpenSea NFT Market Users Identities...

4AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/03/09 2:0 p.m.31 views

Deanonymizing OpenSea NFT Owners via Cross-Site Search Vulnerability

TLDR Recently, a cross-site search vulnerability was discovered affecting the popular NFT marketplace OpenSea. When successfully exploited, this issue allows for the deanonymization of OpenSea users by linking an IP address, a browser session, or an email in certain conditions to a specific...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2020/05/21 10:53 p.m.26 views

CVE-2020-1103

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF.When users are simultaneously logged in to Microsoft SharePoint Server and visit a...

6.8AI score0.0274EPSS
Exploits0References1
CVE
CVE
added 2020/05/21 10:53 p.m.105 views

CVE-2020-1103

CVE-2020-1103 is an information-disclosure vulnerability in Microsoft SharePoint Server. The issue affects how certain search modes handle CSRF-like browser behavior: when a logged-in user visits a malicious page, the browser can issue search queries on behalf of the user. The impact, as describe...

6.5CVSS6.4AI score0.0274EPSS
Exploits0References1Affected Software3
Tenable Nessus
Tenable Nessus
added 2018/12/14 12:0 a.m.172 views

Security Updates for Microsoft Sharepoint Server (December 2018)

The Microsoft Sharepoint Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when Microsoft Excel software reads out of bound memory due to an uninitialized variable, which...

9.3CVSS7.4AI score0.162EPSS
Exploits0References11
OSV
OSV
added 2018/12/12 12:29 a.m.2 views

CVE-2018-8580

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microso...

4.3CVSS5.7AI score0.043EPSS
Exploits0References2
Prion
Prion
added 2018/12/12 12:29 a.m.19 views

Information disclosure

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microso...

4.3CVSS4.2AI score0.043EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2018/12/12 12:29 a.m.3 views

CVE-2018-8580

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microso...

4.3CVSS5.3AI score0.043EPSS
Exploits0References3
NVD
NVD
added 2018/12/12 12:29 a.m.15 views

CVE-2018-8580

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microso...

4.3CVSS4.1AI score0.043EPSS
Exploits0References2
CVE
CVE
added 2018/12/12 12:0 a.m.95 views

CVE-2018-8580

CVE-2018-8580 is an information-disclosure vulnerability in Microsoft SharePoint Server where certain search modes are vulnerable to a CSRF-like cross-site search attack. An attacker can induce queries as a logged-in user to infer whether documents are present in search results, without exposing ...

4.3CVSS4AI score0.043EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/12/12 12:0 a.m.34 views

CVE-2018-8580

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microso...

4AI score0.043EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2018/12/11 8:0 a.m.37 views

Microsoft SharePoint Information Disclosure Vulnerability

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF. When users are simultaneously logged in to Microsoft SharePoint Server and visit a...

4.3CVSS1.5AI score0.043EPSS
Exploits0
NVD
NVD
added 2018/11/20 9:29 a.m.20 views

CVE-2018-10099

Google Monorail before 2018-04-04 has a Cross-Site Search XS-Search vulnerability because CSV downloads are affected by CSRF, and calculations of download times for requests with duplicated columns can be used to obtain sensitive information about the content of bug reports...

5.3CVSS5.1AI score0.00341EPSS
Exploits1References3
OSV
OSV
added 2018/11/20 9:29 a.m.4 views

CVE-2018-10099

Google Monorail before 2018-04-04 has a Cross-Site Search XS-Search vulnerability because CSV downloads are affected by CSRF, and calculations of download times for requests with duplicated columns can be used to obtain sensitive information about the content of bug reports...

5.3CVSS5.8AI score0.00341EPSS
Exploits1References3
Rows per page
Query Builder