Lucene search
K

15798 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/07 12:0 a.m.4 views

Cisco Catalyst SD-WAN Manager Reflected HTML Injection (cisco-sa-vmanage-html-inj-GxVtK6zj)

According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. - A vulnerability in the web interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an unauthenticated, remote attacker to inject HTML into the browser of an...

4.7CVSS5.6AI score0.00279EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/02 12:12 p.m.9 views

CVE-2025-24344

A vulnerability in the error notification messages of the web application of ctrlX OS allows a remote unauthenticated attacker to inject arbitrary HTML tags and, possibly, execute arbitrary client-side code in the context of another user's browser via a crafted HTTP request...

6.3CVSS7.4AI score0.00281EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/02 12:14 a.m.12 views

CVE-2025-45009

A HTML Injection vulnerability was discovered in the normal-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata parameter...

5.3CVSS8.1AI score0.00283EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/02 12:11 a.m.17 views

CVE-2025-45010

A HTML Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the fromdate and todate POST request parameters...

5.3CVSS8.1AI score0.00283EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/02 12:8 a.m.15 views

CVE-2025-45011

A HTML Injection vulnerability was discovered in the foreigner-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata POST request parameter...

5.3CVSS8.1AI score0.00283EPSS
Exploits1References1
NVD
NVD
added 2025/04/30 2:15 p.m.25 views

CVE-2025-45010

A HTML Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the fromdate and todate POST request parameters...

5.3CVSS0.00283EPSS
Exploits1References1
OSV
OSV
added 2025/04/30 2:15 p.m.4 views

CVE-2025-45010

A HTML Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the fromdate and todate POST request parameters...

5.3CVSS6.3AI score0.00283EPSS
Exploits1References1
NVD
NVD
added 2025/04/30 2:15 p.m.10 views

CVE-2025-45011

A HTML Injection vulnerability was discovered in the foreigner-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata POST request parameter...

5.3CVSS0.00283EPSS
Exploits1References1
OSV
OSV
added 2025/04/30 2:15 p.m.2 views

CVE-2025-45011

A HTML Injection vulnerability was discovered in the foreigner-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata POST request parameter...

5.3CVSS6.3AI score0.00283EPSS
Exploits1References1
NVD
NVD
added 2025/04/30 2:15 p.m.13 views

CVE-2025-45009

A HTML Injection vulnerability was discovered in the normal-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata parameter...

5.3CVSS0.00283EPSS
Exploits1References1
OSV
OSV
added 2025/04/30 2:15 p.m.3 views

CVE-2025-45009

A HTML Injection vulnerability was discovered in the normal-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata parameter...

5.3CVSS6.2AI score0.00283EPSS
Exploits1References1
NVD
NVD
added 2025/04/30 12:15 p.m.12 views

CVE-2025-24344

A vulnerability in the error notification messages of the web application of ctrlX OS allows a remote unauthenticated attacker to inject arbitrary HTML tags and, possibly, execute arbitrary client-side code in the context of another user's browser via a crafted HTTP request...

6.3CVSS0.00281EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/30 11:33 a.m.19 views

CVE-2025-24344

A vulnerability in the error notification messages of the web application of ctrlX OS allows a remote unauthenticated attacker to inject arbitrary HTML tags and, possibly, execute arbitrary client-side code in the context of another user's browser via a crafted HTTP request...

6.3CVSS0.00281EPSS
Exploits0References1
CVE
CVE
added 2025/04/30 11:33 a.m.42 views

CVE-2025-24344

The CVE-2025-24344 entry concerns the ctrlX OS web application where a vulnerability lies in the error notification messages. The issue allows a remote, unauthenticated attacker to inject arbitrary HTML tags and, potentially, execute client-side code within another user’s browser through a crafte...

6.3CVSS7.6AI score0.00281EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/30 12:0 a.m.6 views

CVE-2025-45009

A HTML Injection vulnerability was discovered in the normal-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata parameter...

8.1AI score0.00283EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/04/30 12:0 a.m.17 views

CVE-2025-45010

A HTML Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the fromdate and todate POST request parameters...

0.00283EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/04/30 12:0 a.m.11 views

CVE-2025-45011

A HTML Injection vulnerability was discovered in the foreigner-search.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the searchdata POST request parameter...

0.00283EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/04/30 12:0 a.m.2 views

PHPGurukul Park Ticketing Management System 安全漏洞

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from an HTML injection vulnerability that stems from the mishandling of the searchdata parameter in the normal-search.php file, resulting in an HTML injection attack. No details of the...

5.3CVSS7.2AI score0.00283EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/04/30 12:0 a.m.7 views

CVE-2025-45010

A HTML Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the fromdate and todate POST request parameters...

8.1AI score0.00283EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/04/30 12:0 a.m.2 views

PHPGurukul Park Ticketing Management System 安全漏洞

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System has an HTML injection vulnerability that stems from improper handling of the searchdata parameter in the foreigner-search.php file. No details of the vulnerability are available at this time...

5.3CVSS7.2AI score0.00283EPSS
Exploits1References1
Rows per page
Query Builder