8 matches found
EUVD-2023-38681
Malicious code in bioql PyPI...
CVE-2023-34637
A stored cross-site scripting XSS vulnerability in IsarNet AG IsarFlow v5.23 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the dashboard title parameter in the IsarFlow Portal...
CVE-2023-34637
A stored cross-site scripting XSS vulnerability in IsarNet AG IsarFlow v5.23 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the dashboard title parameter in the IsarFlow Portal...
Cross site scripting
A stored cross-site scripting XSS vulnerability in IsarNet AG IsarFlow v5.23 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the dashboard title parameter in the IsarFlow Portal...
CVE-2023-34637
A stored cross-site scripting XSS vulnerability in IsarNet AG IsarFlow v5.23 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the dashboard title parameter in the IsarFlow Portal...
PT-2023-24961 · Isarnet Ag · Isarflow
Name of the Vulnerable Software and Affected Versions: IsarNet AG IsarFlow version 5.23 Description: A stored cross-site scripting XSS vulnerability allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the dashboard title parameter in the...
CVE-2023-34637
CVE-2023-34637 is a stored XSS in IsarNet AG IsarFlow v5.23 that allows an authenticated attacker to inject arbitrary web scripts via the dashboard title parameter in the IsarFlow Portal. The vulnerability is described as CVSS v3.1: AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N with a base score of 5.4 (Me...
CVE-2023-34637
A stored cross-site scripting XSS vulnerability in IsarNet AG IsarFlow v5.23 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the dashboard title parameter in the IsarFlow Portal...