Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-17391

Malware in sbrugna...

6.1CVSS6.5AI score0.0099EPSS
Exploits0References5
Snyk
Snyk
added 2024/10/07 9:42 p.m.3 views

Cross-site Scripting

Overview Affected versions of this package are vulnerable to Cross-site Scripting due to improper wiki name or description sanitization in the Special:WikiDiscover page. Workaround This vulnerability can be mitigated by blocking access to Special:WikiDiscover if unable to upgrade. Remediation A f...

7.6CVSS6.5AI score0.00311EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:45 a.m.3 views

SUSE CVE-2017-8440

Starting in version 5.3.0, Kibana had a cross-site scripting XSS vulnerability in the Discover page that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users...

6.1CVSS7.6AI score0.0099EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2018/01/11 6:49 a.m.27 views

CVE-2017-8440

Starting in version 5.3.0, Kibana had a cross-site scripting XSS vulnerability in the Discover page that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users...

6.1CVSS4.1AI score0.0099EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/07 12:0 a.m.5 views

Elasticsearch Kibana cross-site scripting vulnerability (CNVD-2017-11643)

Elasticsearch Kibana formerly known as elasticsearch-dashboard is a suite of open-source, browser-based analytics and search Elasticsearch dashboard tools from the Dutch company Elasticsearch. A cross-site scripting vulnerability exists in the Discover page in Elasticsearch Kibana versions 5.3 an...

6.1CVSS6.1AI score0.0099EPSS
Exploits0References1
Prion
Prion
added 2017/06/05 2:29 p.m.22 views

Cross site scripting

Starting in version 5.3.0, Kibana had a cross-site scripting XSS vulnerability in the Discover page that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users...

4.3CVSS6AI score0.0099EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2017/06/05 2:29 p.m.23 views

CVE-2017-8440

Starting in version 5.3.0, Kibana had a cross-site scripting XSS vulnerability in the Discover page that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users...

6.1CVSS6.1AI score0.0099EPSS
Exploits0References3
CVE
CVE
added 2017/06/05 2:0 p.m.62 views

CVE-2017-8440

Kibana 5.3.0+ includes a cross-site scripting (XSS) vulnerability in the Discover page that could allow an attacker to obtain sensitive information or perform destructive actions on behalf of other Kibana users. The issue is confirmed across multiple vendor/security sources for Elastic Kibana. Th...

6.1CVSS6AI score0.0099EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder