35 matches found
EUVD-2022-27717
Malicious code in bioql PyPI...
CVE-2022-21828
A user with high privilege access to the Incapptic Connect web console can remotely execute code on the Incapptic Connect server using a unspecified attack vector in Incapptic Connect version 1.40.0, 1.39.1, 1.39.0, 1.38.1, 1.38.0, 1.37.1, 1.37.0, 1.36.0, 1.35.5, 1.35.4 and 1.35.3...
CVE-2022-22571
An authenticated high privileged user can perform a stored XSS attack due to incorrect output encoding in Incapptic connect and affects all current versions...
CVE-2022-22572
A non-admin user with user management permission can escalate his privilege to admin user via password reset functionality. The vulnerability affects Incapptic Connect version 1.40.1...
CVE-2022-22572
A non-admin user with user management permission can escalate his privilege to admin user via password reset functionality. The vulnerability affects Incapptic Connect version 1.40.1...
CVE-2022-22571
An authenticated high privileged user can perform a stored XSS attack due to incorrect output encoding in Incapptic connect and affects all current versions...
CVE-2022-22572
A non-admin user with user management permission can escalate his privilege to admin user via password reset functionality. The vulnerability affects Incapptic Connect version 1.40.1...
CVE-2022-22572
A non-admin user with user management permission can escalate his privilege to admin user via password reset functionality. The vulnerability affects Incapptic Connect version 1.40.1...
CVE-2022-22571
An authenticated high privileged user can perform a stored XSS attack due to incorrect output encoding in Incapptic connect and affects all current versions...
CVE-2022-22571
An authenticated high privileged user can perform a stored XSS attack due to incorrect output encoding in Incapptic connect and affects all current versions...
Cross site scripting
An authenticated high privileged user can perform a stored XSS attack due to incorrect output encoding in Incapptic connect and affects all current versions...
Spoofing
A non-admin user with user management permission can escalate his privilege to admin user via password reset functionality. The vulnerability affects Incapptic Connect version 1.40.1...
CVE-2022-22572
A non-admin user with user management permission can escalate his privilege to admin user via password reset functionality. The vulnerability affects Incapptic Connect version 1.40.1...
CVE-2022-22572
CVE-2022-22572 affects Incapptic Connect
CVE-2022-22571
CVE-2022-22571 affects Incapptic Connect. The vulnerability arises from incorrect output encoding, enabling a stored XSS when exploited by an authenticated high-privileged user. Affected scope is described as all current versions; exploitation requires authentication and elevated privileges, with...
CVE-2022-22571
An authenticated high privileged user can perform a stored XSS attack due to incorrect output encoding in Incapptic connect and affects all current versions...
Incapptic Connect 跨站脚本漏洞
Incapptic Connect is an application plugin. A security vulnerability exists in Incapptic Connect that, due to incorrect output encoding in Incapptic Connect, allows an authenticated, elevated privileged user to perform a stored XSS attack and affects all current versions...
Incapptic Connect 安全漏洞
Incapptic Connect is an application plugin. A security vulnerability exists in Incapptic Connect version 1.40.1, which originates from a non-administrative user with user management privileges being able to elevate their privileges to an administrator user via the password reset feature...
PT-2022-15535 · Unknown · Incapptic Connect
Name of the Vulnerable Software and Affected Versions: Incapptic Connect versions prior to 1.40.1 Description: A non-admin user with user management permission can escalate their privilege to an admin user via the password reset functionality. Recommendations: For versions prior to 1.40.1, update...
Jenkins incapptic connect uploader Plugin has an unspecified vulnerability
Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project. jenkins Plugin is an application. jenkins incapptic connect uploader Plug...