Lucene search
K

322 matches found

CNVD
CNVD
added 2021/05/11 12:0 a.m.5 views

Singularity has an unspecified vulnerability

Singularity is an open source container management platform from the Singularity team Singularity. The software supports building applications on their desktops and running hundreds or thousands of instances on any public cloud or at the compute edge. A security vulnerability exists in versions...

7.5CVSS6.6AI score0.00958EPSS
Exploits1References1
CNVD
CNVD
added 2021/05/07 12:0 a.m.2 views

forum-java is vulnerable to XSS

forum-java is an open source modern community platform. forum-java has an XSS vulnerability that can be exploited by attackers to obtain sensitive information such as user cookies...

5.8AI score
Exploits0
CNVD
CNVD
added 2021/02/10 12:0 a.m.12 views

Adobe Magento SQL Injection Vulnerability

Adobe Magento is Adobe's one with PHP written in open source e-commerce platform.Magento Community Edition is the community edition, later renamed Magento Open Source, Magento Enterprise Edition is the enterprise edition, later renamed Magento Magento Enterprise Edition is the enterprise edition,...

9.1CVSS7.7AI score0.02772EPSS
Exploits0References1
CNVD
CNVD
added 2021/02/10 12:0 a.m.12 views

Adobe Magento XML Injection Vulnerability

Adobe Magento is Adobe's one with PHP written in open source e-commerce platform.Magento Community Edition is the community edition, later renamed Magento Open Source, Magento Enterprise Edition is the enterprise edition, later renamed Magento Magento Enterprise Edition is the enterprise edition,...

9.1CVSS7.6AI score0.03635EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/02/09 12:0 a.m.6 views

Adobe Magento 操作系统命令注入漏洞

Adobe Magento is Adobe's one with PHP written in open source e-commerce platform.Magento Community Edition is the community edition, later renamed Magento Open Source, Magento Enterprise Edition is the enterprise edition, later renamed Magento Magento Enterprise Edition is the enterprise edition,...

9.1CVSS7.5AI score0.04114EPSS
Exploits0References4
CNVD
CNVD
added 2020/12/16 12:0 a.m.7 views

Apache Airflow Encryption Problem Vulnerability

Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. A security vulnerability exists in Apache Airflow versions prior to 1.10.13, which...

6.5CVSS6.8AI score0.02537EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2020/09/07 12:0 a.m.620 views

Cabot 0.11.12 - Persistent Cross-Site Scripting

Exploit Title: Cabot 0.11.12 - Persistent Cross-Site Scripting Date: 2020-09-06 Exploit Author: Abhiram V Vendor Homepage: https://cabotapp.com/ Software Link: https://github.com/arachnys/cabot Version: 0.11.12 Tested on: Ubuntu Linux Introduction Cabot is a free, open-source, self-hosted...

7.4AI score
Exploits0
CNVD
CNVD
added 2020/07/01 12:0 a.m.4 views

Unspecified vulnerability in MISP (CNVD-2020-51415)

MISP is an open source software solution. The product is used to collect, store, distribute and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis. A security vulnerability exists in MISP version 2.4.128, which stems from insufficient ACL...

4.3CVSS6.9AI score0.00679EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/18 12:0 a.m.1 views

Multiple SQL Injection Vulnerabilities in DM Enterprise Website System Backend

DM enterprise building system is developed by php + mysql a set of specialized in small and medium-sized enterprise website construction of open source cms. DM enterprise website building system background there are multiple SQL injection vulnerabilities. Attackers can use the vulnerability to...

8AI score
Exploits0
CNVD
CNVD
added 2020/06/04 12:0 a.m.8 views

Zimbra Code Issues Vulnerabilities

Zimbra is the United States Zimbra company's set of open source e-mail collaboration platform. A code issue vulnerability exists in the /service/upload program in the Webmail subsystem in versions of Zimbra prior to 8.8.15 Patch 10 and 9.x prior to 9.0.0 Patch 3, which can be exploited by an...

8CVSS7.1AI score0.02602EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/21 12:0 a.m.0 views

Remote Code Execution Vulnerability in O2OA System in*** Interface

O2OA is an open source and free enterprise and team office platform , providing portal management , process management , information management , data management four platforms , set of work reports , project collaboration , mobile OA , document sharing , process approval , data collaboration and...

8.4AI score
Exploits0
CNVD
CNVD
added 2019/12/10 12:0 a.m.1 views

SQL Injection Vulnerability in u*** Parameters on zzzphp sa***.php Page

zzphp is a PHP and MYSQL based CMS, free open source building system. zzzphp sa.php page u parameters exist SQL injection vulnerability, attackers can exploit the vulnerability to obtain database sensitive information...

7.9AI score
Exploits0
CNVD
CNVD
added 2019/08/06 12:0 a.m.1 views

XSS Vulnerability in WHATSNS System

WHATSNS system is a php open source Q&A system that can quickly build verticalized domains based on your business needs. WHATSNS system has an XSS vulnerability that can be exploited by attackers to obtain sensitive information...

6.2AI score
Exploits0
CNVD
CNVD
added 2017/03/22 12:0 a.m.2 views

Malware Information Sharing Platform Cross-Site Scripting Vulnerability

MISP is an open source software solution for collecting, storing, distributing and sharing cybersecurity metrics and threats cybersecurity incident analysis and malware analysis. MISP suffers from a cross-site scripting vulnerability. An attacker can exploit this vulnerability to inject arbitrary...

6.1CVSS6.1AI score0.01793EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2017/01/24 12:0 a.m.28 views

JVN#09460804: Knowledge vulnerable to cross-site request forgery

Knowledge provided by support-project.org is an open-source knowledge base platform. Knowledge contains a cross-site request forgery vulnerability CWE-352. Impact If a user views a malicious page while logged in, unintended operations may be performed. Solution Update the Software Update to the...

8.8CVSS8.6AI score0.00741EPSS
Exploits0
CNVD
CNVD
added 2017/01/22 12:0 a.m.5 views

Moodle Security Bypass Vulnerability (CNVD-2017-00904)

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. A security bypass vulnerability exists in Moodle. An attacker could use this...

5.3CVSS5.6AI score0.01015EPSS
Exploits0References1
CNVD
CNVD
added 2016/07/20 12:0 a.m.2 views

Red Hat OpenShift Origin Information Disclosure Vulnerability

Red Hat OpenShift Origin is an open source Platform as a Service PaaS product from Red Hat, Inc. An information disclosure vulnerability exists in Red Hat OpenShift Origin, which can be exploited by attackers to obtain sensitive information...

5.1CVSS6.2AI score0.00369EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/29 12:0 a.m.4 views

Moodle Security Bypass Vulnerability (CNVD-2015-07117)

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. A security bypass vulnerability exists in Moodle. An attacker could use this...

4.3CVSS6.8AI score0.01579EPSS
Exploits0References1
Metasploit
Metasploit
added 2014/10/30 3:34 p.m.31 views

Android Open Source Platform (AOSP) Browser UXSS

This module exploits a Universal Cross-Site Scripting UXSS vulnerability present in all versions of Android's open source stock browser before 4.4, and Android apps running on 'Android Open Source Platform AOSP Browser UXSS', 'Description' = %q This module exploits a Universal Cross-Site Scriptin...

6.1AI score
Exploits0
Metasploit
Metasploit
added 2014/09/08 4:25 a.m.47 views

Android Open Source Platform (AOSP) Browser UXSS

This module exploits a Universal Cross-Site Scripting UXSS vulnerability present in all versions of Android's open source stock browser before 4.4, and Android apps running on 'Android Open Source Platform AOSP Browser UXSS', 'Description' = %q This module exploits a Universal Cross-Site Scriptin...

5.8CVSS6.3AI score0.18278EPSS
Exploits7
Rows per page
Query Builder