Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-31623

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.0045EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:34 a.m.10 views

CVE-2023-27888

Cross-site scripting vulnerability in Joruri Gw Ver 3.2.5 and earlier allows a remote authenticated attacker to inject an arbitrary script via Message Memo function of the affected product...

5.4CVSS6.3AI score0.0045EPSS
Exploits0References1
OSV
OSV
added 2023/05/10 6:15 a.m.5 views

CVE-2023-27888

Cross-site scripting vulnerability in Joruri Gw Ver 3.2.5 and earlier allows a remote authenticated attacker to inject an arbitrary script via Message Memo function of the affected product...

5.4CVSS6.2AI score0.0045EPSS
Exploits0References2
NVD
NVD
added 2023/05/10 6:15 a.m.18 views

CVE-2023-27888

Cross-site scripting vulnerability in Joruri Gw Ver 3.2.5 and earlier allows a remote authenticated attacker to inject an arbitrary script via Message Memo function of the affected product...

5.4CVSS5.2AI score0.0045EPSS
Exploits0References2
Prion
Prion
added 2023/05/10 6:15 a.m.18 views

Cross site scripting

Cross-site scripting vulnerability in Joruri Gw Ver 3.2.5 and earlier allows a remote authenticated attacker to inject an arbitrary script via Message Memo function of the affected product...

4.9CVSS5.2AI score0.0045EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/10 12:0 a.m.14 views

CVE-2023-27888

Cross-site scripting vulnerability in Joruri Gw Ver 3.2.5 and earlier allows a remote authenticated attacker to inject an arbitrary script via Message Memo function of the affected product...

5.2AI score0.0045EPSS
Exploits0References2
CVE
CVE
added 2023/05/10 12:0 a.m.46 views

CVE-2023-27888

CVE-2023-27888 affects Joruri Gw; vulnerable component is the Message Memo function in Joruri Gw versions 3.2.5 and earlier. The root cause is a cross-site scripting flaw that allows a remote authenticated attacker to inject arbitrary script, potentially impacting users’ browsers when they load t...

5.4CVSS5.2AI score0.0045EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/10 12:0 a.m.6 views

PT-2023-21394 · Joruri Gw · Joruri Gw

Name of the Vulnerable Software and Affected Versions: Joruri Gw versions 3.2.5 and earlier Description: A cross-site scripting issue allows a remote authenticated attacker to inject an arbitrary script via the Message Memo function of the affected product. Recommendations: For versions 3.2.5 and...

5.4CVSS5.2AI score0.0045EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/04/17 5:19 a.m.2 views

Joruri Gw vulnerable to cross-site scripting

Overview Joruri Gw provided by SiteBridge Inc. is groupware. Message Memo function of Joruri Gw contains a cross-site scripting vulnerability CWE-79. Tsutomu Aramaki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...

5.4CVSS6AI score0.0045EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/04/17 12:0 a.m.26 views

JVN#87559956: Joruri Gw vulnerable to cross-site scripting

Joruri Gw provided by SiteBridge Inc. is groupware. Message Memo function of Joruri Gw contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the web browser of the user who is accessing the specific page of the product. Solution Update the software...

5.4CVSS5.3AI score0.0045EPSS
Exploits0
CNNVD
CNNVD
added 2023/04/17 12:0 a.m.7 views

Joruri Gw 跨站脚本漏洞

Joruri Gw is a web portal of Joruri Inc. A security vulnerability exists in Joruri Gw. An attacker can exploit the vulnerability to execute arbitrary scripts...

5.4CVSS6.1AI score0.0045EPSS
Exploits0References4
CNVD
CNVD
added 2018/05/16 12:0 a.m.4 views

SiteBridge Joruri Gw Arbitrary File Upload Vulnerability

SiteBridge Joruri Gw is a group assignment software from SiteBridge Japan. An arbitrary file upload vulnerability exists in SiteBridge Joruri Gw 3.2.0 and earlier versions. A remote attacker can exploit this vulnerability to execute arbitrary PHP code...

8.8CVSS7.6AI score0.01721EPSS
Exploits0References1
Prion
Prion
added 2018/05/14 1:29 p.m.17 views

Unrestricted file upload

Unrestricted file upload vulnerability in SiteBridge Inc. Joruri Gw Ver 3.2.0 and earlier allows remote authenticated users to execute arbitrary PHP code via unspecified vectors...

6.5CVSS8.6AI score0.01721EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2018/05/14 1:29 p.m.15 views

CVE-2018-0568

Unrestricted file upload vulnerability in SiteBridge Inc. Joruri Gw Ver 3.2.0 and earlier allows remote authenticated users to execute arbitrary PHP code via unspecified vectors...

8.8CVSS8.7AI score0.01721EPSS
Exploits0References2
OSV
OSV
added 2018/05/14 1:29 p.m.22 views

CVE-2018-0568

Unrestricted file upload vulnerability in SiteBridge Inc. Joruri Gw Ver 3.2.0 and earlier allows remote authenticated users to execute arbitrary PHP code via unspecified vectors...

8.8CVSS8.9AI score
Exploits0References2
CVE
CVE
added 2018/05/14 1:0 p.m.45 views

CVE-2018-0568

CVE-2018-0568 is an unrestricted file upload vulnerability in SiteBridge Joruri Gw (Ver 3.2.0 and earlier). A remote authenticated attacker can execute arbitrary PHP code via unspecified vectors due to CWE-434-like upload flaw. Affected: Joruri Gw 3.2.0 and earlier. Impact: potential remote code ...

8.8CVSS8.7AI score0.01721EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/05/14 1:0 p.m.17 views

CVE-2018-0568

Unrestricted file upload vulnerability in SiteBridge Inc. Joruri Gw Ver 3.2.0 and earlier allows remote authenticated users to execute arbitrary PHP code via unspecified vectors...

8.8AI score0.01721EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2018/04/26 6:19 a.m.4 views

Joruri Gw vulnerable to arbitrary file upload

Overview Joruri Gw provided by SiteBridge Inc. is groupware which runs on Ruby on Rails. Joruri Gw contains a vulnerability that may allow an attacker to upload arbitrary files CWE-434. Shoji Baba of Kobe Digital Labo, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the...

8.8CVSS7.9AI score0.01721EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2018/04/26 12:0 a.m.48 views

JVN#95589314: Joruri Gw vulnerable to arbitrary file upload

Joruri Gw provided by SiteBridge Inc. is groupware which runs on Ruby on Rails. Joruri Gw contains a vulnerability that may allow an attacker to upload arbitrary files CWE-434. Impact A user may upload arbitrary files. When PHP code execution is enabled on the server, a user may execute arbitrary...

8.8CVSS9.1AI score0.01721EPSS
Exploits0
Rows per page
Query Builder