Lucene search
K

17 matches found

BDU FSTEC
BDU FSTEC
added 2025/02/17 12:0 a.m.10 views

The vulnerability of the generateNavigation() function in the PHP Spreadsheet library, which allows attackers to perform cross-site scripting attacks

The vulnerability of the generateNavigation function in the PhpSpreadsheet PHP library is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a remote attacker to perform cross-site scripting attacks...

5CVSS5.3AI score0.00371EPSS
Exploits4References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/29 12:0 a.m.7 views

The vulnerability of the Open Social CMS system’s Drupal module, related to the lack of protective measures for website structures, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Open Social CMS system, Drupal, is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.2AI score0.0021EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/02 12:0 a.m.8 views

The vulnerability of the URL Handler component in the Zimbra Collaboration Suite email management system allows attackers to execute arbitrary code, as a result of insufficient measures taken to protect the structure of the web page.

The vulnerability of the URL Handler component in the Zimbra Collaboration Suite corporate email management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created...

5.5CVSS5.9AI score0.00246EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/14 12:0 a.m.11 views

The vulnerability of the Omnibox address bars in Google Chrome and Microsoft Edge browsers allows attackers to perform cross-site scripting attacks.

The vulnerability of the Omnibox address bars in Google Chrome and Microsoft Edge is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS6.9AI score0.00257EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.6 views

The vulnerability of Google Chrome’s web browser extensions, which allows a perpetrator to compromise data integrity

The vulnerability of Google Chrome’s web browser extensions is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of data...

4.3CVSS6.3AI score0.01481EPSS
Exploits1References11Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/07/15 12:0 a.m.6 views

The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform allows a perpetrator to carry out cross-site scripting attacks.

The vulnerability of the Splunk Web interface of the Splunk Enterprise operating analysis platform is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

8.1CVSS5.2AI score0.00547EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.10 views

The vulnerability of the ProofreadPage extension, a software tool for implementing a hypertext environment like MediaWiki, allows a hacker to carry out cross-site scripting attacks.

The vulnerability of the ProofreadPage extension, a software tool for implementing the MediaWiki hypertext environment, exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attac...

6.4CVSS6AI score0.0032EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/11/01 12:0 a.m.9 views

The vulnerability of the SEO plugin developed by 10Web, a content management system for WordPress, allows attackers to perform cross-site scripting attacks.

The vulnerability of the SEO plugin of the 10Web content management system for WordPress is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...

6.4CVSS6.3AI score0.00909EPSS
Exploits3References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/26 12:0 a.m.5 views

The vulnerability of the WYSIWYG editor in the Mobiledoc Kit exists due to the lack of measures taken to protect the structure of web pages. This allows attackers to execute XSS attacks.

The vulnerability of the Mobiledoc Kit WYSIWYG editor exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

10CVSS7AI score0.00745EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/05/17 12:0 a.m.7 views

The vulnerability of the social-warfare plugin in the WordPress content management system allows attackers to perform cross-site scripting attacks.

The vulnerability of the social-warfare plugin in the WordPress content management system exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.1CVSS6.8AI score0.73543EPSS
Exploits20References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/03/01 12:0 a.m.7 views

The vulnerability of Microsoft Edge browsers, related to the lack of measures taken to protect the structure of web pages, allows attackers to execute cross-site scripting attacks.

The vulnerability of Microsoft Edge relates to the lack of measures taken to protect the structure of a web page. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

4.2CVSS6.2AI score0.01193EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2022/01/06 12:0 a.m.3 views

PT-2022-1748 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based versions affected versions not specified Description: The issue is related to the browser's failure to properly enforce web page structure protections, potentially allowing a remote attacker to perform cross-site...

4.2CVSS8.9AI score0.01193EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.9 views

The vulnerability of the SVG file on the MoinMoin wiki platform, due to deficiencies in the measures used to protect web page structures, allows attackers to compromise the integrity of the data.

The vulnerability of the SVG file on the wiki platform MoinMoin is related to deficiencies in the security measures used to protect web page structures. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the data...

5.4CVSS6.7AI score0.01725EPSS
Exploits1References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/02/04 12:0 a.m.19 views

The vulnerability of the eDocLib platform for storing and processing corporate data arises from the lack of measures taken to protect the website structure. This vulnerability allows attackers to carry out cross-site scripting attacks.

The vulnerability of the eDocLib platform for storing and processing corporate data exists due to the lack of measures taken to protect its web page structure. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute arbitrary code in the user’s browser by creating a...

6.5CVSS6AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/01/21 12:0 a.m.5 views

The vulnerability of the Mozilla Firefox browser, related to deficiencies in the measures used to protect the structure of web pages, allows attackers to perform cross-site scripting attacks.

The vulnerability of the Mozilla Firefox browser is related to deficiencies in the security measures used to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.1CVSS6.8AI score0.01143EPSS
Exploits0References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2020/05/07 12:0 a.m.6 views

The vulnerability of the WordPress website content management system, related to the lack of measures taken to protect the structure of web pages, allows attackers to compromise the integrity of data.

The vulnerability of the WordPress content management system is related to an error in the XSS attack reproduction process when editing blocks in the dashboard, which is only accessible to authorized users. Exploiting this vulnerability could allow a malicious actor to compromise data integrity...

5.4CVSS6.7AI score0.01396EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/02/17 12:0 a.m.6 views

The vulnerability of the webcal resource identifier in the Firefox browser, related to the lack of protective measures for the website structure, allows attackers to compromise data integrity.

The vulnerability of the webcal resource identifier in the Firefox browser is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the data...

6.1CVSS7AI score0.00645EPSS
Exploits0References5Affected Software3
Rows per page
Query Builder