Lucene search
K

172 matches found

Prion
Prion
added 2023/02/09 4:15 p.m.12 views

Design/Logic Flaw

OrangeScrum version 2.0.11 allows an external attacker to obtain arbitrary user accounts from the application. This is possible because the application returns malicious user input in the response with the content-type set to text/html...

5.8CVSS6.2AI score0.00486EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/02/09 12:0 a.m.14 views

CVE-2023-0624

OrangeScrum version 2.0.11 allows an external attacker to obtain arbitrary user accounts from the application. This is possible because the application returns malicious user input in the response with the content-type set to text/html...

6.4AI score0.00486EPSS
Exploits1References2
OSV
OSV
added 2023/02/01 3:15 a.m.12 views

CVE-2023-0454

OrangeScrum version 2.0.11 allows an authenticated external attacker to delete arbitrary local files from the server. This is possible because the application uses an unsanitized attacker-controlled parameter to construct an internal path...

8.1CVSS6.6AI score0.00986EPSS
Exploits1References2
Prion
Prion
added 2023/02/01 3:15 a.m.19 views

Path traversal

OrangeScrum version 2.0.11 allows an authenticated external attacker to delete arbitrary local files from the server. This is possible because the application uses an unsanitized attacker-controlled parameter to construct an internal path...

5.5CVSS7.8AI score0.00986EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/18 12:0 a.m.5 views

CVE-2023-0164

OrangeScrum version 2.0.11 allows an authenticated external attacker to execute arbitrary commands on the server. This is possible because the application injects an attacker-controlled parameter into a system function...

9.1AI score0.01381EPSS
Exploits1References2
Veracode
Veracode
added 2022/11/28 5:33 a.m.34 views

Cross-site Scripting (XSS)

spatie/browsershot is vulnerable to cross site scripting. The vulnerable exists in the setUrl function in Browsershot.php which allows an external attacker to remotely obtain arbitrary local files, because the application does not validate the passed URL protocol...

8.2CVSS7.6AI score0.0061EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/11/25 6:30 p.m.35 views

GHSA-6Q49-35H6-RQ2P Browsershot version 3.57.3 vulnerable to improper input validation

Browsershot version 3.57.3 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate that the JS content imported from an external source passed to the Browsershot::html method does not contain URLs that use the file:// protoc...

6.1CVSS8AI score0.0061EPSS
Exploits1References5
OSV
OSV
added 2022/11/25 6:30 p.m.17 views

GHSA-8C2C-JXWJ-JQGF Browsershot does not validate URL protocols passed to Browsershot URL method

Browsershot version 3.57.2 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate the URL protocol passed to the Browsershot::url method...

8.2CVSS8AI score0.0061EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/11/25 6:30 p.m.16 views

Browsershot version 3.57.3 vulnerable to improper input validation

Browsershot version 3.57.3 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate that the JS content imported from an external source passed to the Browsershot::html method does not contain URLs that use the file:// protoc...

8.2CVSS7.8AI score0.0061EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2022/11/25 6:15 p.m.33 views

CVE-2022-41712

Frappe version 14.10.0 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not correctly validate the information injected by the user in the importfile parameter...

6.5CVSS0.00895EPSS
Exploits1References2
Prion
Prion
added 2022/11/25 5:15 p.m.17 views

Code injection

Browsershot version 3.57.3 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate that the JS content imported from an external source passed to the Browsershot::html method does not contain URLs that use the file:// protoc...

5.8CVSS8AI score0.0061EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/25 12:0 a.m.5 views

CVE-2022-43984 Browsershot 3.57.3 - Server Side XSS to LFR via HTML

Browsershot version 3.57.3 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate that the JS content imported from an external source passed to the Browsershot::html method does not contain URLs that use the file:// protoc...

7.8AI score0.0061EPSS
Exploits1References2
OSV
OSV
added 2022/11/04 12:0 p.m.14 views

GHSA-P5G9-RJCF-95VJ fastest-json-copy vulnerable to Prototype Pollution

fastest-json-copy version 1.0.1 allows an external attacker to edit or add new properties to an object. This is possible because the application does not correctly validate the incoming JSON keys, thus allowing the proto property to be edited...

5.3CVSS6.1AI score0.00615EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2022/11/04 12:0 p.m.57 views

deep-object-diff vulnerable to Prototype Pollution

deep-object-diff before version 1.1.6 allows an external attacker to edit or add new properties to an object. This is possible because the application does not properly validate incoming JSON keys, thus allowing the proto property to be edited. This issue was fixed in version 1.1.9...

5.3CVSS5.4AI score0.00643EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2022/11/04 12:0 p.m.25 views

fastest-json-copy vulnerable to Prototype Pollution

fastest-json-copy version 1.0.1 allows an external attacker to edit or add new properties to an object. This is possible because the application does not correctly validate the incoming JSON keys, thus allowing the proto property to be edited...

5.3CVSS5.5AI score0.00615EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2022/11/04 12:0 p.m.19 views

Markdownify has Files or Directories Accessible to External Parties

Markdownify version 1.4.1 allows an external attacker to remotely obtain arbitrary local files on any client that attempts to view a malicious markdown file through Markdownify. This is possible because the application does not have a CSP policy or at least not strict enough and/or does not...

5.5CVSS5.4AI score0.00365EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/11/03 8:15 p.m.19 views

CVE-2022-42745

CandidATS version 3.0.0 allows an external attacker to read arbitrary files from the server. This is possible because the application is vulnerable to XXE...

7.5CVSS0.00804EPSS
Exploits1References2
Prion
Prion
added 2022/11/03 8:15 p.m.12 views

Xxe

Markdownify version 1.4.1 allows an external attacker to remotely obtain arbitrary local files on any client that attempts to view a malicious markdown file through Markdownify. This is possible because the application does not have a CSP policy or at least not strict enough and/or does not...

1.9CVSS5.4AI score0.00365EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/11/03 8:15 p.m.20 views

Design/Logic Flaw

fastest-json-copy version 1.0.1 allows an external attacker to edit or add new properties to an object. This is possible because the application does not correctly validate the incoming JSON keys, thus allowing the 'proto' property to be edited...

5CVSS5.2AI score0.00615EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/11/03 8:15 p.m.12 views

Code injection

deep-object-diff version 1.1.0 allows an external attacker to edit or add new properties to an object. This is possible because the application does not properly validate incoming JSON keys, thus allowing the 'proto' property to be edited...

5CVSS5.2AI score0.00643EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder