The vulnerability of the CI/CD application integration and delivery system JetBrains TeamCity, related to the lack of security measures for website structures, allows attackers to perform cross-site scripting attacks (XSS).

The vulnerability of the Continuous Integration and Deployment Application Delivery system CI/CD of TeamCity by JetBrains is related to the lack of measures taken to protect the structure of the agentpushPreset web page. Exploiting this vulnerability could allow a malicious actor to perform...

The vulnerability of the software product lies in its ability to identify, simulate, and visualize application architectures in real time. The IBMTivoli Application Dependency Discovery Manager (TADDM) is susceptible to this vulnerability due to the lack of measures taken to protect the structure of web pages. This allows attackers to execute cross-site scripting attacks.

The vulnerability of the software product for identifying, modeling, and visualizing application architectures in real time – IBMTivoli Application Dependency Discovery Manager TADDM – is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability...

The vulnerability of the Apache Felix HTTP Webconsole plugin, which stems from the lack of protective measures for website structure, allows attackers to perform cross-site scripting attacks.

The vulnerability of the Apache Felix HTTP Webconsole plugin is related to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform allows a perpetrator to execute arbitrary code.

The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform is related to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of Google Chrome’s Custom Tabs component, which allows a hacker to increase their privileges.

The vulnerability of Google Chrome’s Custom Tabs component is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability can allow a malicious actor to enhance their privileges through a specially created application...

The vulnerability of the WEBGUI component of the SAP NetWeaver Application Server ABAP software integration platform allows a attacker to perform XSS attacks.

The vulnerability of the WEBGUI component of the SAP NetWeaver Application Server ABAP software integration platform exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of the Debug Mode mode in the Laravel PHP framework allows attackers to perform cross-site scripting attacks.

The vulnerability of the Debug Mode mode in the Laravel PHP framework is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

Linux Distros Unpatched Vulnerability : CVE-2022-48797

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm: don't try to NUMA-migrate COW pages that have other uses Oded Gabbay reports that enabli...

The vulnerability of the sshterm.php script (located at usr/local/nagiosxi/html/admin/sshterm.php), a monitoring tool for Nagios XI, allows attackers to perform cross-site scripting attacks.

The vulnerability of the sshterm.php script located at usr/local/nagiosxi/html/admin/sshterm.php, a monitoring tool for Nagios XI, is related to the lack of security measures taken to protect the web page structure. Exploiting this vulnerability could allow an attacker, operating remotely, to...

The vulnerability of the Compositing component in Google Chrome and Microsoft Edge browsers allows attackers to replace the user interface.

The vulnerability of the Compositing component in Google Chrome and Microsoft Edge exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to replace the user interface with a specially created HTML page...

CVE-2024-9427

A vulnerability in Koji was found. An unsanitized input allows for an XSS attack. Javascript code from a malicious link could be reflected in the resulting web page. It is not expected to be able to submit an action or make a change in Koji due to existing XSS protections in the code...

The vulnerability of the Message Handler component in the multi-platform web solution for creating Scada systems, Scada-LTS, allows attackers to perform cross-site scripting attacks.

The vulnerability of the Message Handler component in the multi-platform web solution for creating Scada systems is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allows attackers to perform cross-site scripting attacks...

The vulnerability of the Portal for ArcGIS web portal, related to the lack of measures taken to protect the structure of the web page, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Portal for ArcGIS is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using a specially created web page...

The vulnerability of the Netcat CMS system’s comment module allows a hacker to execute arbitrary JavaScript code.

The vulnerability of the Netcat CMS system’s comment module exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code in the user’s browser remotely...

The vulnerability of the Code Inspection control element in the CI/CD application integration and delivery system by JetBrains TeamCity allows attackers to perform cross-site scripting attacks.

The vulnerability of the Code Inspection control element in the CI/CD application integration and delivery system of JetBrains TeamCity is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-page...

The vulnerability in the web-based client of IBM Datacap software for document collection and processing allows attackers to execute cross-site scripting attacks, due to the lack of security measures taken to protect the structure of the web page.

The vulnerability of the IBM Datacap Navigator web client software for document collection and processing exists due to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...

CVE-2022-48797

In the Linux kernel, the following vulnerability has been resolved: mm: don't try to NUMA-migrate COW pages that have other uses Oded Gabbay reports that enabling NUMA balancing causes corruption with his Gaudi accelerator test load: "All the details are in the bug, but the bottom line is that...

CVE-2022-48797

CVE-2022-48797: Linux kernel vulnerability where NUMA balancing could affect COW page writability. Root cause: change_pte_range() tests page_mapcount(page) to enable NUMA faults, which is nonsensical; patch fixes to use page_count(). Oded Gabbay’s report linked a Gaudi accelerator workload; apply...

The vulnerability of the Rich Text Editor component in the Querybook big data processing environment allows a hacker to execute arbitrary code.

The vulnerability of the Rich Text Editor component in the Querybook big data processing environment is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...

The vulnerability of the single interface for SAP NetWeaver Business Client, which exists due to the lack of measures taken to protect the structure of the web page, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the single interface for SAP NetWeaver Business Client exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...