Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

CVE
CVEadded 2021/01/20 1:45 a.m.48 views

CVE-2020-13134

Tufin SecureChange is affected by stored XSS in all TOS deployments prior to R19.3 HF3 and R20-1 HF1. The vulnerability requires admin privileges to store the payload and can be triggered by admin users. Affected versions are fixed in R19.3 HF3 and R20-1 HF1; no exploitation details are provided ...

4.8CVSS4.9AI score0.00522EPSS
Exploits0References2Affected Software1
CNNVD
CNNVDadded 2021/01/19 12:0 a.m.3 views

Tufin Securechange Cross-Site Scripting Vulnerability

Tufin Securechange is a network management software for enterprise environments from Tufin USA. A cross-site scripting vulnerability exists in Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1, which stems from a lack of proper validation of client-side data by the WEB application. An attacker...

6.1CVSS6.3AI score0.00704EPSS
Exploits0References3
0day.today
0day.todayadded 2019/07/27 12:0 a.m.88 views

Tufin Secure Change Remote Code Execution Exploit

Tufin SecureChange uses Richfaces version 4.3.5 which suffers from a remote code execution vulnerability. Product: Secure Change Vendor: Tufin Subject: Tufin SecureChange uses Richfaces 4.3.5, vulnerable to CVE-2015-0279 unauthenticated RCE CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H base score...

6.8CVSS0.3AI score0.03958EPSS
Exploits1
Rows per page
Query Builder