Lucene search
K

11 matches found

NVD
NVD
added 2026/02/11 9:16 p.m.12 views

CVE-2020-37192

MSN Password Recovery 1.30 contains an XML external entity injection vulnerability that allows attackers to read local system files through crafted XML input. Attackers can exploit the 'Favorites' tab by injecting a malicious XML file that references external entities to retrieve sensitive system...

6.7CVSS0.00207EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/11 8:37 p.m.26 views

CVE-2020-37192 MSN Password Recovery 1.30 - XML External Entity Injection

MSN Password Recovery 1.30 contains an XML external entity injection vulnerability that allows attackers to read local system files through crafted XML input. Attackers can exploit the 'Favorites' tab by injecting a malicious XML file that references external entities to retrieve sensitive system...

6.7CVSS0.00207EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/11 8:37 p.m.3 views

CVE-2020-37192 MSN Password Recovery 1.30 - XML External Entity Injection

MSN Password Recovery 1.30 contains an XML external entity injection vulnerability that allows attackers to read local system files through crafted XML input. Attackers can exploit the 'Favorites' tab by injecting a malicious XML file that references external entities to retrieve sensitive system...

6.7CVSS5.6AI score0.00207EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/11 8:37 p.m.11 views

CVE-2020-37192

MSN Password Recovery 1.30 contains an XML external entity injection vulnerability that allows attackers to read local system files through crafted XML input. Attackers can exploit the 'Favorites' tab by injecting a malicious XML file that references external entities to retrieve sensitive system...

6.7CVSS5.6AI score0.00207EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/02/11 8:37 p.m.17 views

CVE-2020-37192

MSN Password Recovery 1.30 is affected by an XML External Entity (XXE) vulnerability that allows a local attacker to read local system files by supplying crafted XML input. The attack targets the Favorites tab via XML references to external entities, exposing sensitive configuration information. ...

6.7CVSS5.6AI score0.00207EPSS
Exploits0References3
NVD
NVD
added 2023/01/01 8:15 a.m.26 views

CVE-2022-34322

Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerable features. An issue is present in the Notify Users About Modification me...

9CVSS8.9AI score0.00756EPSS
Exploits1References1
Prion
Prion
added 2023/01/01 8:15 a.m.16 views

Cross site scripting

Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerable features. An issue is present in the Notify Users About Modification me...

6CVSS8.6AI score0.00756EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/01/01 12:0 a.m.4 views

PT-2023-13357 · Sage · Sage Enterprise Intelligence

Name of the Vulnerable Software and Affected Versions: Sage Enterprise Intelligence version 2021 R1.1 Description: Multiple XSS issues were discovered that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerabl...

9CVSS6.4AI score0.00756EPSS
Exploits1References5
Cvelist
Cvelist
added 2023/01/01 12:0 a.m.32 views

CVE-2022-34322

Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerable features. An issue is present in the Notify Users About Modification me...

8.9AI score0.00756EPSS
Exploits1References1
Citrix
Citrix
added 2019/10/03 12:0 a.m.7 views

How to select by default Apps instead of Favorites tab on RfWebUI Theme

Unified Gateway ICA Proxy set to NO without Storefront will land on the Favorites page. Default: Goal:...

7AI score
Exploits0
Citrix
Citrix
added 2016/09/16 12:0 a.m.9 views

How to change default view on storefront website.

When we access Storefront site, the page directly lands to Favorites tab. How to change it?...

7.1AI score
Exploits0
Rows per page
Query Builder