Lucene search
+L

161 matches found

Vulnrichment
Vulnrichment
added 2023/09/28 12:0 a.m.11 views

CVE-2023-43884

A Cross-site scripting XSS vulnerability in Reference ID from the panel Transactions, of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into 'Reference ID' parameter...

5.9AI score0.00396EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/09/28 12:0 a.m.37 views

CVE-2023-43884

A Cross-site scripting XSS vulnerability in Reference ID from the panel Transactions, of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into 'Reference ID' parameter...

5.6AI score0.00396EPSS
Exploits1References1
OSV
OSV
added 2023/09/28 12:0 a.m.17 views

CVE-2023-43884

A Cross-site scripting XSS vulnerability in Reference ID from the panel Transactions, of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into 'Reference ID' parameter...

5.4CVSS6.2AI score0.00396EPSS
Exploits1References3
Circl
Circl
added 2020/01/27 11:37 p.m.7 views

CVE-2014-8563

creationtimestamp| type| source ---|---|--- 2020-01-27 23:37:38+00:00| seen| https://t.me/cveNotify/471...

9.8CVSS8.7AI score0.02506EPSS
Exploits0References1
Hacker One
Hacker One
added 2020/01/17 11:15 a.m.20 views

Razer: Improper access control on easytopup.in.th transaction page leads to user's information disclosure and may lead to account hijacking

The tester discovered a Razer Gold Thailand server was vulnerable to information disclosure due to the use of a predicable reference ID in application URLs which could lead to the ability obtain phone numbers. Razer thanks the tester for his clear report...

1.1AI score
Exploits0
UbuntuCve
UbuntuCve
added 2019/12/20 11:15 p.m.3 views

CVE-2019-16787

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-19905. Reason: This candidate is a duplicate of CVE-2019-19905. Notes: All CVE users should reference CVE-2019-19905 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

5.9AI score
Exploits0References4
OSV
OSV
added 2018/11/26 7:29 a.m.3 views

CVE-2018-19559

CuppaCMS before 2018-11-12 has SQL Injection in administrator/classes/ajax/functions.php via the referenceid parameter...

9.8CVSS5.8AI score0.0104EPSS
Exploits1References1
CNVD
CNVD
added 2018/11/26 12:0 a.m.6 views

CuppaCMS SQL Injection Vulnerability

CuppaCMS is a content management system CMS. A SQL injection vulnerability exists in the administrator/classes/ajax/functions.php file in CuppaCMS 2018-11-12 and earlier versions. A remote attacker can exploit the vulnerability to execute SQL commands with the help of 'referenceid' parameter...

9.8CVSS9.9AI score0.0104EPSS
Exploits1References1
Prion
Prion
added 2017/06/14 1:29 p.m.14 views

Privilege escalation

An elevation of privilege vulnerability in the MediaTek command queue driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...

7.6CVSS6.9AI score0.00665EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2010/04/13 5:30 p.m.17 views

Code injection

Unspecified vulnerability on the TANDBERG Video Communication Server VCS before X5.0 allows remote attackers to execute arbitrary code via unknown vectors, aka Reference ID 69773...

10CVSS8.3AI score0.03254EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2010/04/13 5:30 p.m.20 views

CVE-2010-1356

Unspecified vulnerability on the TANDBERG Video Communication Server VCS before X5.0 allows remote attackers to execute arbitrary code via unknown vectors, aka Reference ID 69773...

10CVSS7.7AI score0.03254EPSS
Exploits0References1
Prion
Prion
added 2010/04/13 5:30 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability on the TANDBERG Video Communication Server VCS before X5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Reference ID 66316...

4.3CVSS6.2AI score0.00855EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2010/04/13 5:0 p.m.26 views

CVE-2010-1356

Unspecified vulnerability on the TANDBERG Video Communication Server VCS before X5.0 allows remote attackers to execute arbitrary code via unknown vectors, aka Reference ID 69773...

7.7AI score0.03254EPSS
Exploits0References1
CVE
CVE
added 2010/04/13 5:0 p.m.42 views

CVE-2010-1355

The CVE-2010-1355 entry concerns a Cross-site Scripting (XSS) vulnerability in the TANDBERG Video Communication Server (VCS) prior to X5.0. The connected sources confirm the affected product and that the vulnerability is XSS with unspecified vectors, allowing remote attackers to inject arbitrary ...

4.3CVSS5.9AI score0.00855EPSS
Exploits0References1Affected Software1
Nmap
Nmap
added 2009/12/12 10:42 p.m.1703 views

ntp-info NSE Script

Gets the time and configuration variables from an NTP server. We send two requests: a time request and a "read variables" opcode 2 control message. Without verbosity, the script shows the time and the value of the version, processor, system, refid, and stratum variables. With verbosity, all...

10CVSS0.1AI score0.99448EPSS
Exploits33
Circl
Circl
added 2009/07/27 12:0 a.m.5 views

CVE-2009-3223

creationtimestamp| type| source ---|---|--- 2009-07-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9271...

6.5CVSS5.8AI score0.00897EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2007/12/19 10:46 p.m.4 views

CVE-2007-6442

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-6114. Reason: This candidate is a duplicate of CVE-2007-6114. Notes: All CVE users should reference CVE-2007-6114 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

10CVSS5.8AI score0.06212EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2006/03/03 11:2 a.m.2 views

CVE-2006-0975

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-0459. Reason: This candidate is a reservation duplicate of CVE-2006-0459. Notes: All CVE users should reference CVE-2006-0459 instead of this candidate. All references and descriptions in this candidate have been removed to...

7.5CVSS5.9AI score0.04769EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2005/09/14 9:3 p.m.5 views

CVE-2005-2913

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-2799. Reason: This candidate is a duplicate of CVE-2005-2799. Notes: All CVE users should reference CVE-2005-2799 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

7.5CVSS5.9AI score0.70753EPSS
Exploits8References1
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.3 views

MS:3667303B-4434-41E6-A501-6F7566B9AB8D

...

7AI score
Exploits0
Rows per page
Query Builder