Lucene search
K

127 matches found

GithubExploit
GithubExploit
added 2021/02/03 3:59 a.m.194 views

Exploit for CVE-2021-25646

Apache Druid Remote Code Execution Vulnerability Summary...

9CVSS8.1AI score0.99301EPSS
Exploits7
Exploit DB
Exploit DB
added 2020/12/21 12:0 a.m.208 views

Flexmonster Pivot Table & Charts 2.7.17 - 'To OLAP' Reflected XSS

Exploit Title: Flexmonster Pivot Table & Charts 2.7.17 - 'To OLAP' Reflected XSS Date: 08/01/2020 Exploit Author: Marco Nappi Vendor Homepage: https://www.flexmonster.com/ Version:Flexmonster Pivot Table & Charts 2.7.17 Tested on:Flexmonster Pivot Table & Charts 2.7.17 CVE : CVE-2020-20141 Cross...

6.1CVSS6.4AI score0.01616EPSS
Exploits3
Cvelist
Cvelist
added 2020/12/17 10:38 p.m.26 views

CVE-2020-20141

Cross Site Scripting XSS vulnerability in the To OLAP XMLA component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17...

6AI score0.01616EPSS
Exploits3References1
CNNVD
CNNVD
added 2020/12/17 12:0 a.m.6 views

Flexmonster Pivot Table & Charts Cross-Site Scripting Vulnerability

Flexmonster Pivot Table & Charts is a Javascript-based codebase for viewing, analyzing, and managing multidimensional data online from Flexmonster. A cross-site scripting vulnerability exists in the Connect menu in Flexmonster Pivot Table & Charts 2.7.17, which originates in the OLAP XMLA compone...

6.1CVSS6.2AI score0.01616EPSS
Exploits3References4
Packet Storm
Packet Storm
added 2020/12/17 12:0 a.m.201 views

Flexmonster Pivot Table And Charts 2.7.17 Cross Site Scripting

Exploit Title: CVE-2020-20140 : Cross Site Scripting XSS vulnerability in Remote Report component under the Open menu in Flexmonster Pivot Table & Charts 2.7.17 Date: 08/01/2020 Exploit Author: Marco Nappi Vendor Homepage: n/a Software Link: n/a Version:Flexmonster Pivot Table & Charts 2.7.17...

6.2AI score0.0328EPSS
Exploits10
CNVD
CNVD
added 2020/10/20 12:0 a.m.13 views

Apache Kylin Information Disclosure Vulnerability

Apache Kylin is an open source distributed analytic data warehouse from the Apache Software Foundation. The product mainly provides Hadoop/Spark on top of the SQL query interface and multi-dimensional analysis OLAP and other functions. Apache Kylin exists an information disclosure vulnerability,...

5.3CVSS3.2AI score0.78809EPSS
Exploits0References1
Imperva Blog
Imperva Blog
added 2020/07/28 12:51 p.m.55 views

Introduction to SQL: Examples, Best Practices and Pitfalls

SQL Structured Query Language has been with us for more than half a century and it’s not going away anytime soon. Popular in both traditional relational databases and newer NoSQL databases technologies, SQL is widely used for data analytics, Big Data processing, coding languages, and more. I’m a...

8.4AI score
Exploits0
Microsoft KB
Microsoft KB
added 2020/04/21 12:0 a.m.5 views

November 11, 2014 update for SharePoint Server 2013 (KB2883055)

November 11, 2014 update for SharePoint Server 2013 KB2883055 This article describes update KB2883055 for Microsoft SharePoint Server 2013 that was released on November 11, 2014. This update has a prerequisite. Fixes and Improvements Fixes the following issue: Assume that you open an Excel workbo...

5.5AI score
Exploits0
OpenVAS
OpenVAS
added 2020/02/19 12:0 a.m.44 views

Huawei GaussDB 200 OLAP 6.5.1 Multiple Vulnerabilities

Huawei GaussDB 200 is affected by multiple command injection and path traversal vulnerabilities. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public...

8.8CVSS0.4AI score0.01144EPSS
Exploits0References3
Cvelist
Cvelist
added 2019/05/14 8:20 p.m.25 views

CVE-2019-0289

Under certain conditions SAP BusinessObjects Business Intelligence platform Analysis for OLAP, versions 4.2 and 4.3, allows an attacker to access information which would otherwise be restricted...

6.8AI score0.0108EPSS
Exploits0References2
CVE
CVE
added 2019/05/14 8:20 p.m.62 views

CVE-2019-0289

CVE-2019-0289 affects SAP BusinessObjects Business Intelligence Platform (Analysis for OLAP), specifically versions 4.2 and 4.3, where an attacker can access information that should be restricted. The provided documents confirm the affected product and the information disclosure impact but do not...

7.1CVSS6.7AI score0.0108EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2018/06/14 12:0 a.m.4 views

Knowage Cross-Site Scripting Vulnerability (CNVD-2018-11813)

Knowage formerly SpagoBI is an open source suite for modern business analytics on traditional resources and big data systems from Knowage Italy. A cross-site scripting vulnerability exists in Knowage version 6.1.1. A remote attacker can exploit the vulnerability by sending the name or description...

6.1CVSS6AI score0.00768EPSS
Exploits0References1
Prion
Prion
added 2018/06/13 11:29 p.m.15 views

Cross site scripting

Knowage formerly SpagoBI 6.1.1 allows XSS via the name or description field to the "Olap Schemas' Catalogue" catalogue...

4.3CVSS5.9AI score0.00768EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2018/06/13 11:29 p.m.17 views

CVE-2018-12355

Knowage formerly SpagoBI 6.1.1 allows XSS via the name or description field to the "Olap Schemas' Catalogue" catalogue...

6.1CVSS6AI score0.00768EPSS
Exploits0References1
OSV
OSV
added 2018/06/13 11:29 p.m.13 views

CVE-2018-12355

Knowage formerly SpagoBI 6.1.1 allows XSS via the name or description field to the "Olap Schemas' Catalogue" catalogue...

6.1CVSS6.1AI score
Exploits0References1
CVE
CVE
added 2018/06/13 11:0 p.m.45 views

CVE-2018-12355

CVE-2018-12355 affects Knowage (formerly SpagoBI) 6.1.1 with a cross-site scripting vulnerability in the Olap Schemas’ Catalogue exposed via the name or description fields. Multiple sources corroborate an XSS in Knowage 6.1.1; the vulnerability enables injection of arbitrary scripts through the s...

6.1CVSS5.9AI score0.00768EPSS
Exploits0References1Affected Software1
Microsoft KB
Microsoft KB
added 2018/06/12 7:0 a.m.49 views

Description of the security update for Excel 2016: June 12, 2018

Description of the security update for Excel 2016: June 12, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common...

5.5CVSS6.1AI score0.17359EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2018/04/10 7:0 a.m.32 views

Description of the security update for Excel 2016: April 10, 2018

Description of the security update for Excel 2016: April 10, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common...

9.3CVSS7.5AI score0.20332EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2018/01/16 7:29 p.m.1 views

CVE-2016-0215

IBM DB2 9.7, 10.1 before FP6, and 10.5 before FP8 on AIX, Linux, HP, Solaris and Windows allow remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a subquery containing the AVG OLAP function on an Oracle compatible database...

6.5CVSS5.6AI score0.01569EPSS
Exploits0References2
OSV
OSV
added 2018/01/16 7:29 p.m.17 views

CVE-2016-0215

IBM DB2 9.7, 10.1 before FP6, and 10.5 before FP8 on AIX, Linux, HP, Solaris and Windows allow remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a subquery containing the AVG OLAP function on an Oracle compatible database...

6.5CVSS6.1AI score0.01569EPSS
Exploits0References1
Rows per page
Query Builder