CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

47 matches found

Packet Storm•added 2020/12/11 12:0 a.m.•512 views

OpenAsset Digital Asset Management Cross Site Scripting

Title: Stored cross-site scripting XSS Product: OpenAsset Digital Asset Management by OpenAsset Vendor Homepage: https://www.openasset.com/ Vulnerable Version: 12.0.19 Cloud 11.2.1 On-premise Fixed Version: 12.0.23 Cloud 11.4.10 On-premise CVE Number: CVE-2020-28857 Author: Jack Misiura from The...

6.3AI score0.01511EPSS

Exploits2

CNNVD•added 2020/12/11 12:0 a.m.•3 views

Openasset Cross-Site Scripting Vulnerability

Openasset is a digital asset management software for the website builder industry from Openasset UK. A cross-site scripting vulnerability exists in OpenAsset Digital Asset Management that stems from the web application providing several endpoints that allow unauthenticated data retrieval. For...

5.3CVSS5.9AI score0.02311EPSS

Exploits2References6

CNNVD•added 2020/12/11 12:0 a.m.•5 views

Openasset Cross-Site Request Forgery Vulnerability

Openasset is a digital asset management software for the website building industry from Openasset UK. The OpenAsset Digital Asset Management application suffers from a cross-site request forgery vulnerability, which it does not verify that requests made to itself are intentionally made by the use...

8.8CVSS7.2AI score0.0106EPSS

Exploits2References6

Packet Storm•added 2020/12/11 12:0 a.m.•541 views

OpenAsset Digital Asset Management SQL Injection

Title: Authenticated blind SQL injection SQLi Product: OpenAsset Digital Asset Management by OpenAsset Vendor Homepage: https://www.openasset.com/ Vulnerable Version: 12.0.19 Cloud 11.2.1 On-premise Fixed Version: 12.0.23 Cloud 11.4.10 On-premise CVE Number: CVE-2020-28860 Author: Jack Misiura fr...

8.9AI score0.02221EPSS

Exploits2

CNNVD•added 2020/12/11 12:0 a.m.•5 views

OpenAsset Digital Asset Management software 跨站脚本漏洞

Openasset is a digital asset management software for the website building industry from Openasset UK. The OpenAsset Digital Asset Management software product suffers from an XSS injection vulnerability that could allow a remote attacker to inject arbitrary JavaScript or HTML for later rendering b...

6.1CVSS6.5AI score0.01511EPSS

Exploits2References6

CNNVD•added 2020/12/11 12:0 a.m.•5 views

OpenAsset Digital Asset Management software Cross-Site Scripting Vulnerability

Openasset is a digital asset management software for the website building industry from Openasset UK. A cross-site scripting vulnerability exists in the OpenAsset Digital Asset Management software that originates from allowing remote attackers to inject arbitrary JavaScript or HTML via...

6.1CVSS6.4AI score0.00773EPSS

Exploits1References4

Packet Storm•added 2020/12/11 12:0 a.m.•565 views

OpenAsset Digital Asset Management IP Access Control Bypass

Title: IP access control bypass Product: OpenAsset Digital Asset Management by OpenAsset Vendor Homepage: https://www.openasset.com/ Vulnerable Version: 12.0.19 Cloud 11.2.1 On-premise Fixed Version: 12.0.20 Cloud 11.4.10 On-premise CVE Number: CVE-2020-28856 Author: Jack Misiura from The Missing...

0.8AI score0.02474EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by