CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

50 matches found

NVD•added 2019/07/23 6:15 p.m.•8 views

CVE-2019-1010199

ServiceStack ServiceStack Framework 4.5.14 is affected by: Cross Site Scripting XSS. The impact is: JavaScrpit is reflected in the server response, hence executed by the browser. The component is: the query used in the GET request is prone. The attack vector is: Since there is no server-side...

6.1CVSS6.1AI score0.0024EPSS

Exploits0References1

Prion•added 2019/07/23 6:15 p.m.•8 views

Cross site scripting

4.3CVSS6.1AI score0.0024EPSS

Exploits0References1Affected Software1

CVE•added 2019/07/23 5:17 p.m.•55 views

CVE-2019-1010199

CVE-2019-1010199 affects ServiceStack Framework 4.5.14. The vulnerability is a reflected Cross-Site Scripting (XSS) in the server response triggered by the GET request query, due to lack of server-side input validation; bypass of browser encoding could allow a crafted URL to execute JavaScript in...

6.1CVSS6AI score0.0024EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/07/23 5:17 p.m.•11 views

CVE-2019-1010199

6.1AI score0.0024EPSS

Exploits0References1

CNVD•added 2018/09/29 12:0 a.m.•1 views

Progress Sitefinity CMS Cross-Site Scripting Vulnerability

Progress Sitefinity CMS is an open source platform for building corporate websites and intranets. A cross-site scripting vulnerability exists in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0. A remote attacker can exploit this vulnerability to inject arbitrary web script or...

6.1CVSS6.3AI score0.00075EPSS

Exploits1References1

OSV•added 2018/09/28 12:29 a.m.•0 views

CVE-2018-17056

Cross-site scripting XSS vulnerability in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS5.9AI score

Exploits0References2

NVD•added 2018/09/28 12:29 a.m.•9 views

CVE-2018-17056

Cross-site scripting XSS vulnerability in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS6AI score0.00075EPSS

Exploits1References2

Prion•added 2018/09/28 12:29 a.m.•8 views

Cross site scripting

Cross-site scripting XSS vulnerability in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.00075EPSS

Exploits1References2Affected Software1

Cvelist•added 2018/09/28 12:0 a.m.•10 views

CVE-2018-17056

Cross-site scripting XSS vulnerability in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.2AI score0.00075EPSS

Exploits1References2

CVE•added 2018/09/28 12:0 a.m.•43 views

CVE-2018-17056

CVE-2018-17056 is an XSS vulnerability in ServiceStack used by Progress Sitefinity CMS. Connected sources confirm affected product/version range: Sitefinity 10.2.x through 11.0.x, with the underlying issue in the ServiceStack component enabling remote script/HTML injection via unspecified vectors...

6.1CVSS6AI score0.00075EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by