Lucene search
K

13 matches found

ATTACKERKB
ATTACKERKB
added 2024/02/29 1:40 a.m.5 views

CVE-2023-41165

An issue was discovered in Stormshield Network Security SNS 3.7.0 through 3.7.38 before 3.7.39, 3.10.0 through 3.11.26 before 3.11.27, 4.0 through 4.3.21 before 4.3.22, and 4.4.0 through 4.6.8 before 4.6.9. An administrator with write access to the SNS firewall can configure a login disclaimer wi...

4.8CVSS5.8AI score0.00412EPSS
Exploits0References2
OSV
OSV
added 2024/02/29 1:40 a.m.1 views

CVE-2023-41165

An issue was discovered in Stormshield Network Security SNS 3.7.0 through 3.7.38 before 3.7.39, 3.10.0 through 3.11.26 before 3.11.27, 4.0 through 4.3.21 before 4.3.22, and 4.4.0 through 4.6.8 before 4.6.9. An administrator with write access to the SNS firewall can configure a login disclaimer wi...

4.8CVSS5.8AI score0.00412EPSS
Exploits0References1
Prion
Prion
added 2024/02/29 1:40 a.m.19 views

Design/Logic Flaw

An issue was discovered in Stormshield Network Security SNS 3.7.0 through 3.7.38 before 3.7.39, 3.10.0 through 3.11.26 before 3.11.27, 4.0 through 4.3.21 before 4.3.22, and 4.4.0 through 4.6.8 before 4.6.9. An administrator with write access to the SNS firewall can configure a login disclaimer wi...

7.3AI score0.00412EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/02/29 12:0 a.m.6 views

Stormshield Network Security Security Vulnerabilities

Stormshield Network Security is a next-generation UTM Unified Threat Management firewall from the French company Stormshield. A security vulnerability exists in Stormshield Network Security that stems from the fact that an administrator with write access can configure login disclaimers using...

4.8CVSS6.7AI score0.00412EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/12/25 12:0 a.m.4 views

PT-2023-27840 · Stormshield · Stormshield Network Security

Name of the Vulnerable Software and Affected Versions: Stormshield Network Security SNS versions 3.7.0 through 3.7.38 Stormshield Network Security SNS versions 3.10.0 through 3.11.26 Stormshield Network Security SNS versions 4.0 through 4.3.21 Stormshield Network Security SNS versions 4.4.0 throu...

4.8CVSS7.2AI score0.00412EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/12/25 12:0 a.m.24 views

CVE-2023-41165

An issue was discovered in Stormshield Network Security SNS 3.7.0 through 3.7.38 before 3.7.39, 3.10.0 through 3.11.26 before 3.11.27, 4.0 through 4.3.21 before 4.3.22, and 4.4.0 through 4.6.8 before 4.6.9. An administrator with write access to the SNS firewall can configure a login disclaimer wi...

6.7AI score0.00412EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2018/06/20 3:29 p.m.3 views

CVE-2018-9036

CheckSec Canopy 3.x before 3.0.7 has stored XSS via the Login Page Disclaimer, allowing attacks by low-privileged users against higher-privileged users...

4.8CVSS5.4AI score0.00518EPSS
Exploits0References2
OSV
OSV
added 2018/06/20 3:29 p.m.3 views

CVE-2018-9036

CheckSec Canopy 3.x before 3.0.7 has stored XSS via the Login Page Disclaimer, allowing attacks by low-privileged users against higher-privileged users...

4.8CVSS5.8AI score0.00518EPSS
Exploits0References1
Prion
Prion
added 2017/10/27 1:29 p.m.28 views

Cross site scripting

A Cross-Site-Scripting XSS vulnerability in Fortinet FortiOS 5.4.0 to 5.4.5 and 5.6.0 allows a remote unauthenticated attacker to execute arbitrary javascript code via webUI "Login Disclaimer" redir parameter...

4.3CVSS6.5AI score0.0128EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2017/10/27 1:29 p.m.4 views

CVE-2017-7733

A Cross-Site-Scripting XSS vulnerability in Fortinet FortiOS 5.4.0 to 5.4.5 and 5.6.0 allows a remote unauthenticated attacker to execute arbitrary javascript code via webUI "Login Disclaimer" redir parameter...

6.1CVSS6.1AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2017/10/27 1:0 p.m.13 views

CVE-2017-7733

A Cross-Site-Scripting XSS vulnerability in Fortinet FortiOS 5.4.0 to 5.4.5 and 5.6.0 allows a remote unauthenticated attacker to execute arbitrary javascript code via webUI "Login Disclaimer" redir parameter...

7.1AI score0.0128EPSS
Exploits0References3
Fortinet
Fortinet
added 2017/10/24 12:0 a.m.29 views

FortiOS web GUI logindisclaimer redir parameter XSS vulnerability

A reflected XSS vulnerability exists in FortiOS web GUI "Login Disclaimer" redir parameter. It is potentially exploitable by a remote unauthenticated attacker, via sending a maliciously crafted URL to a victim who has an open session on the web GUI. Visiting that malicious URL may cause the...

4.3CVSS2.5AI score0.0128EPSS
Exploits0Affected Software1
Openbugbounty
Openbugbounty
added 2017/04/11 6:7 a.m.7 views

sharecafe.com.au XSS vulnerability

Open Bug Bounty ID: OBB-224198 Description| Value ---|--- Affected Website:| sharecafe.com.au Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Rows per page
Query Builder