Lucene search
K

385 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-46233

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00687EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-51936

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.0026EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-37910

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00523EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.9 views

PT-2025-54496

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in Safe Access in Synology Safe Access before 1.3.1-0329 allows remote authenticated users with administrator privileges to read or write specific files containing non-sensitive information or conduct...

5.9CVSS5.8AI score0.00265EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/07/25 4:27 a.m.8 views

CVE-2024-53287

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in VPN Setting functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified...

5.9CVSS6.1AI score0.00205EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/25 4:27 a.m.9 views

CVE-2024-53288

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in NTP Region functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified...

5.9CVSS6.1AI score0.00205EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/25 4:27 a.m.9 views

CVE-2024-53286

Improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in DDNS Record functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to execute arbitrary code via unspecified vectors...

7.2CVSS7.5AI score0.01148EPSS
Exploits0References1
OSV
OSV
added 2025/07/23 5:15 a.m.3 views

CVE-2024-53288

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in NTP Region functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified...

5.9CVSS5.9AI score0.00205EPSS
Exploits0References1
NVD
NVD
added 2025/07/23 5:15 a.m.5 views

CVE-2024-53288

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in NTP Region functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified...

5.9CVSS0.00205EPSS
Exploits0References1
NVD
NVD
added 2025/07/23 5:15 a.m.5 views

CVE-2024-53287

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in VPN Setting functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified...

5.9CVSS0.00205EPSS
Exploits0References1
OSV
OSV
added 2025/07/23 5:15 a.m.3 views

CVE-2024-53286

Improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in DDNS Record functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to execute arbitrary code via unspecified vectors...

7.2CVSS6.1AI score0.01148EPSS
Exploits0References1
NVD
NVD
added 2025/07/23 5:15 a.m.11 views

CVE-2024-53286

Improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in DDNS Record functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to execute arbitrary code via unspecified vectors...

7.2CVSS0.01148EPSS
Exploits0References1
OSV
OSV
added 2025/07/23 5:15 a.m.3 views

CVE-2024-53287

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in VPN Setting functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified...

5.9CVSS5.9AI score0.00205EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/23 4:11 a.m.8 views

CVE-2024-53288

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in NTP Region functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified...

5.9CVSS0.00205EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/23 4:11 a.m.3 views

CVE-2024-53288

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in NTP Region functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified...

5.9CVSS6AI score0.00205EPSS
Exploits0References1
CVE
CVE
added 2025/07/23 4:11 a.m.21 views

CVE-2024-53288

CVE-2024-53288 is an XSS vulnerability in the NTP Region functionality of Synology Router Manager (SRM) versions prior to 1.3.1-9346-11. The issue allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors. Affected product: Syno...

5.9CVSS6.5AI score0.00205EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/23 4:11 a.m.4 views

CVE-2024-53287

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in VPN Setting functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified...

5.9CVSS6AI score0.00205EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/23 4:11 a.m.10 views

CVE-2024-53287

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in VPN Setting functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified...

5.9CVSS0.00205EPSS
Exploits0References1
CVE
CVE
added 2025/07/23 4:11 a.m.23 views

CVE-2024-53287

Synology Router Manager (SRM) is affected by CVE-2024-53287: an XSS in the VPN Setting functionality where improper input neutralization during web page generation allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors. Affec...

5.9CVSS6.5AI score0.00205EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/23 4:11 a.m.11 views

CVE-2024-53286

Improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in DDNS Record functionality in Synology Router Manager SRM before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to execute arbitrary code via unspecified vectors...

7.2CVSS0.01148EPSS
Exploits0References1
Rows per page
Query Builder