Lucene search
K

136 matches found

Positive Technologies
Positive Technologies
added 2024/08/15 12:0 a.m.5 views

PT-2024-22015 · Friendica · Friendica

Name of the Vulnerable Software and Affected Versions: Friendica version 2023.12 Description: The issue allows a remote attacker to obtain sensitive information via the lack of file type filtering in the file attachment parameter. This is a Cross Site Scripting issue. Recommendations: For Friendi...

6.1CVSS6.5AI score0.00298EPSS
Exploits1References7
CVE
CVE
added 2024/06/18 10:42 a.m.50 views

CVE-2024-38504

CVE-2024-38504 impacts JetBrains YouTrack prior to 2024.2.34646, where the Guest User Account could attach files to articles. The underlying issue is that guest access allowed file attachments to article content, enabling a potential information exposure via user-generated content. The vulnerabil...

5.3CVSS4.8AI score0.00362EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.21 views

RHEL 7 : mailman (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - mailman: arbitrary content injection via the options login page CVE-2020-12108 - mailman: XSS via file...

6.5CVSS7.4AI score0.02698EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/03/25 8:27 p.m.24 views

CVE-2024-29179 phpMyFAQ Stored Cross-site Scripting at File Attachments

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. An attacker with admin privileges can upload an attachment containing JS code without extension and the application will render it as HTML which allows for XSS attacks...

4.3CVSS5.3AI score0.00508EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2024/03/25 7:45 p.m.26 views

phpMyFAQ Stored Cross-site Scripting at File Attachments

Summary An attacker with admin privileges can upload an attachment containing JS code without extension and the application will render it as HTML which allows for XSS attacks. Details When attachments are uploaded without an extension, the application renders it as HTML by default. Therefore...

4.8CVSS6.6AI score0.00508EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/03/06 11:4 a.m.19 views

BIT-REDMINE-2022-44030

Redmine 5.x before 5.0.4 allows downloading of file attachments of any Issue or any Wiki page due to insufficient permission checks. Depending on the configuration, this may require login as a registered user...

7.5CVSS7.4AI score0.00644EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/01/08 11:30 p.m.7 views

CVE-2024-21651 XWiki Denial of Service attack through attachments

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. A user able to attach a file to a page can post a malformed TAR file by manipulating file modification times headers, which when parsed by Tika, could cause a denial of service issue via CPU...

7.5CVSS7.4AI score0.00636EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2023/11/14 10:1 a.m.58 views

New Campaign Targets Middle East Governments with IronWind Malware

Government entities in the Middle East are the target of new phishing campaigns that are designed to deliver a new initial access downloader dubbed IronWind. The activity, detected between July and October 2023, has been attributed by Proofpoint to a threat actor it tracks under the name TA402,...

7.3AI score
Exploits0
CNNVD
CNNVD
added 2023/10/31 12:0 a.m.38 views

phpMyFAQ 跨站脚本漏洞

phpMyFAQ is a multi-language, fully database-driven FAQ system. A cross-site scripting vulnerability exists in versions prior to phpMyFAQ 3.2.2, which stems from the lack of effective filtering and escaping of user-supplied data in the FileName parameter of the file attachment upload function, an...

5.4CVSS6.1AI score0.00414EPSS
Exploits1References3
Prion
Prion
added 2023/06/26 4:15 p.m.17 views

Cross site scripting

A stored cross-site scripting Stored XSS vulnerability in file preview in WeKan before 6.75 allows remote authenticated users to inject arbitrary web script or HTML via names of file attachments. Any user can obtain the privilege to rename within their own board where they have BoardAdmin access,...

4.9CVSS4.9AI score0.00965EPSS
Exploits2References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/06/26 12:0 a.m.5 views

PT-2023-21754 · Wekan · Wekan

Name of the Vulnerable Software and Affected Versions: WeKan versions prior to 6.75 Description: A stored cross-site scripting Stored XSS issue in the file preview feature allows remote authenticated users to inject arbitrary web script or HTML via names of file attachments. Users with BoardAdmin...

5.4CVSS5.1AI score0.00965EPSS
Exploits2References6
Cvelist
Cvelist
added 2023/06/26 12:0 a.m.45 views

CVE-2023-28485

A stored cross-site scripting Stored XSS vulnerability in file preview in WeKan before 6.75 allows remote authenticated users to inject arbitrary web script or HTML via names of file attachments. Any user can obtain the privilege to rename within their own board where they have BoardAdmin access,...

5.1AI score0.00965EPSS
Exploits2References3
OSV
OSV
added 2023/05/19 6:30 p.m.21 views

GHSA-36CM-H8GV-MG97 RosarioSIS Stores Sensitive Data in a Mechanism without Access Control

RosarioSIS prior to 11.0 allows anyone, regardless of authentication status, to download and view file attachments under the salaries module. In addition, the file names contain a date in a YYYY-MM-DD format and a random six-string digit, making enumerating file names with automated tools...

7.5CVSS7.6AI score0.00613EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2023/05/19 6:30 p.m.30 views

RosarioSIS Stores Sensitive Data in a Mechanism without Access Control

RosarioSIS prior to 11.0 allows anyone, regardless of authentication status, to download and view file attachments under the salaries module. In addition, the file names contain a date in a YYYY-MM-DD format and a random six-string digit, making enumerating file names with automated tools...

7.5CVSS7.1AI score0.00613EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/12 12:0 a.m.4 views

PT-2023-20766 · Unknown · Rosariosis

Name of the Vulnerable Software and Affected Versions: RosarioSIS versions prior to 11.0 Description: The issue allows unauthorized access to sensitive data due to a lack of access control in a mechanism. Specifically, it enables anyone to download and view file attachments under the salaries...

7.5CVSS7.6AI score0.00613EPSS
Exploits0References6
Veracode
Veracode
added 2023/03/10 10:14 p.m.37 views

Information Disclosure

redmine is vulnerable to Information Disclosure. The library allows downloading of file attachments of any Issue or any Wiki page due to insufficient permission checks. Depending on the configuration, this may require login as a registered user...

7.5CVSS7.1AI score0.00644EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:30 a.m.3 views

SUSE CVE-2022-4055

When xdg-mail is configured to use thunderbird for mailto URLs, improper parsing of the URL can lead to additional headers being passed to thunderbird that should not be included per RFC 2368. An attacker can use this method to create a mailto URL that looks safe to users, but will actually attac...

6.1CVSS6.9AI score0.00652EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2022/12/06 11:15 p.m.28 views

CVE-2022-44030

Redmine 5.x before 5.0.4 allows downloading of file attachments of any Issue or any Wiki page due to insufficient permission checks. Depending on the configuration, this may require login as a registered user...

7.5CVSS7.1AI score0.00644EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/12/06 12:0 a.m.7 views

CVE-2022-44030

Redmine 5.x before 5.0.4 allows downloading of file attachments of any Issue or any Wiki page due to insufficient permission checks. Depending on the configuration, this may require login as a registered user...

7.5AI score0.00644EPSS
Exploits0References2
OSV
OSV
added 2022/11/19 12:15 a.m.26 views

CVE-2022-4055

When xdg-mail is configured to use thunderbird for mailto URLs, improper parsing of the URL can lead to additional headers being passed to thunderbird that should not be included per RFC 2368. An attacker can use this method to create a mailto URL that looks safe to users, but will actually attac...

7.4CVSS7.3AI score
Exploits0References1
Rows per page
Query Builder