Lucene search
K

148 matches found

BDU FSTEC
BDU FSTEC
added 2022/07/08 12:0 a.m.6 views

The vulnerability of the search.c component of the Vim text editor allows a hacker to execute arbitrary code.

The vulnerability of the search.c component of the Vim text editor is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.6CVSS7.6AI score0.01419EPSS
Exploits1References12Affected Software6
BDU FSTEC
BDU FSTEC
added 2022/06/17 12:0 a.m.5 views

The vulnerability of the Email Marketing Stand-Alone component of the Oracle Siebel CRM system allows a hacker to modify data or gain unauthorized access to the device.

The vulnerability of the Search component in Oracle Siebel CRM’s customer relationship management system exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to modify, add, or delete data, or gain unauthorized access to the...

6.1CVSS6.8AI score0.00934EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2022/05/24 5:46 p.m.23 views

Docsify vulnerable to cross-site scripting due to mishandled encoding

docsify versions 4.12.1 and earlier are vulnerable to cross-site scripting XSS because the search component does not appropriately encode Code Blocks and mishandles the " character...

6.1CVSS6.1AI score0.00785EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2022/05/24 5:46 p.m.9 views

GHSA-5H7X-68WJ-JHWC Docsify vulnerable to cross-site scripting due to mishandled encoding

docsify versions 4.12.1 and earlier are vulnerable to cross-site scripting XSS because the search component does not appropriately encode Code Blocks and mishandles the " character...

6.1CVSS6AI score0.00785EPSS
Exploits1References5
OSV
OSV
added 2022/04/25 3:15 p.m.2 views

CVE-2022-26111

The BeanShell components of IRISNext through 9.8.28 allow execution of arbitrary commands on the target server by creating a custom search or editing an existing/predefined search of the documents. The search components permit adding BeanShell expressions that result in Remote Code Execution in t...

8.8CVSS6.1AI score0.04028EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/04/25 12:0 a.m.5 views

PT-2022-17681 · Irisnet · Irisnext

Name of the Vulnerable Software and Affected Versions: IRISNext versions through 9.8.28 Description: The issue allows execution of arbitrary commands on the target server by creating a custom search or editing an existing search of the documents. The search components permit adding BeanShell...

9CVSS9.1AI score0.04028EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2022/02/16 12:0 a.m.8 views

The vulnerability of the Web Search component of the Google Chrome browser allows a hacker to circumvent existing security restrictions.

The vulnerability of Google Chrome’s Web Search component is related to the use of memory after deallocation. Exploiting this vulnerability could allow a remote attacker to bypass existing security restrictions...

9.3CVSS7.1AI score0.0073EPSS
Exploits0References10Affected Software6
CNVD
CNVD
added 2021/04/21 12:0 a.m.8 views

Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2021-37756)

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management, etc. It is a seamlessly integrated management suite. Presentment Architecture is one of the bill reminder tool,...

8.1CVSS6.5AI score0.01053EPSS
Exploits0References1
NVD
NVD
added 2021/04/02 9:15 p.m.25 views

CVE-2021-30074

docsify 4.12.1 is affected by Cross Site Scripting XSS because the search component does not appropriately encode Code Blocks and mishandles the " character...

6.1CVSS0.00785EPSS
Exploits1References1
OSV
OSV
added 2021/04/02 9:15 p.m.12 views

CVE-2021-30074

docsify 4.12.1 is affected by Cross Site Scripting XSS because the search component does not appropriately encode Code Blocks and mishandles the " character...

6.1CVSS6.2AI score
Exploits0References1
Prion
Prion
added 2021/04/02 9:15 p.m.20 views

Cross site scripting

docsify 4.12.1 is affected by Cross Site Scripting XSS because the search component does not appropriately encode Code Blocks and mishandles the " character...

4.3CVSS6.1AI score0.00785EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/04/02 8:40 p.m.29 views

CVE-2021-30074

docsify 4.12.1 is affected by Cross Site Scripting XSS because the search component does not appropriately encode Code Blocks and mishandles the " character...

6.3AI score0.00785EPSS
Exploits1References1
CVE
CVE
added 2021/04/02 8:40 p.m.72 views

CVE-2021-30074

CVE-2021-30074 affects docsify 4.12.1 and earlier, with a Cross Site Scripting (XSS) vulnerability in the search component due to improper encoding of code blocks and mishandling of the quote character. The issue is documented across multiple sources (GHSA, Red Hat, OSV, CVE records) and confirms...

6.1CVSS6.1AI score0.00785EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/04/02 12:0 a.m.5 views

docsify 跨站脚本漏洞

docsify is a documentation website generator. A cross-site scripting vulnerability exists in docsify 4.12.1, which stems from the search component not properly coding code blocks and incorrectly handling "characters"...

6.1CVSS6AI score0.00785EPSS
Exploits1References2
Kaspersky
Kaspersky
added 2021/03/02 12:0 a.m.475 views

KLA12106 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A heap buff...

8.8CVSS9.3AI score0.26525EPSS
Exploits25References4
BDU FSTEC
BDU FSTEC
added 2021/02/02 12:0 a.m.6 views

The vulnerability of the Search component in the Oracle Siebel CRM system, which is used for managing customer relationships, allows a perpetrator to modify data or gain unauthorized access to the device.

The vulnerability of the Search component in Oracle Siebel CRM’s customer relationship management system exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to modify, add, or delete data, or gain unauthorized access to the...

7.6CVSS7.3AI score0.00937EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2021/01/20 2:50 p.m.25 views

CVE-2021-2039

Vulnerability in the Siebel Core - Server Framework product of Oracle Siebel CRM component: Search. Supported versions that are affected are 20.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server Framework...

7.6CVSS7.7AI score0.00937EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/01/20 2:50 p.m.9 views

CVE-2021-2039

Vulnerability in the Siebel Core - Server Framework product of Oracle Siebel CRM component: Search. Supported versions that are affected are 20.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server Framework...

7.6CVSS7AI score0.00937EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/20 12:0 a.m.9 views

Oracle Siebel CRM Access Control Error Vulnerability

Oracle Siebel CRM is the United States Oracle Oracle company's set of customer relationship management solutions. The program includes sales management, marketing management, customer service systems, call centers and other modules.Siebel Core - Server Framework is one of the Siebel server...

7.6CVSS6.2AI score0.00937EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/19 12:0 a.m.7 views

Oracle Siebel CRM 组件安全漏洞

Oracle Siebel CRM is the United States Oracle Oracle company's set of customer relationship management solutions. The program includes sales management, marketing management, customer service systems, call centers and other modules.Siebel Core - Server Framework is one of the Siebel server...

7.6CVSS7.2AI score0.00937EPSS
Exploits0References2
Rows per page
Query Builder