Lucene search
K

458 matches found

OSV
OSV
added 2022/03/16 12:0 a.m.19 views

GHSA-VPWQ-6CP4-FFQC Stored Cross-site Scripting in ShowDoc

ShowDoc prior to version 2.10.4 is vulnerable to stored cross-site scripting viva axd and cshtml file upload...

5.4CVSS5.1AI score0.00797EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.29 views

Stored Cross-site Scripting in ShowDoc

ShowDoc prior to version 2.10.4 is vulnerable to stored cross-site scripting viva axd and cshtml file upload...

9CVSS2.1AI score0.00797EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/03/16 12:0 a.m.16 views

GHSA-Q73M-3Q7R-FPF7 Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via file upload...

5.4CVSS5.1AI score0.00754EPSS
Exploits1References5
OSV
OSV
added 2022/03/16 12:0 a.m.12 views

GHSA-V94V-PXQP-5QGJ Cross-site Scripting in ShowDoc

The upload feature of ShowDoc prior to version 2.10.4 allows files with the extension .html, which leads to stored cross-site scripting...

5.4CVSS5.2AI score0.00625EPSS
Exploits1References4
OSV
OSV
added 2022/03/16 12:0 a.m.17 views

GHSA-J6JG-W79C-7P8V File Upload Restriction Bypass leading to Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to a file upload restriction bypass leading to stored cross-site scripting...

6.1CVSS5.9AI score0.0087EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.31 views

Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via file upload...

7.6CVSS2.5AI score0.00754EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.37 views

Cross-site Scripting in ShowDoc

The upload feature of ShowDoc prior to version 2.10.4 allows files with the extension .html, which leads to stored cross-site scripting...

6.5CVSS0.9AI score0.00625EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.26 views

File Upload Restriction Bypass leading to Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to a file upload restriction bypass leading to stored cross-site scripting...

8.2CVSS1.8AI score0.0087EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/03/16 12:0 a.m.17 views

GHSA-WG8P-W946-C482 Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via file upload...

5.4CVSS5.1AI score0.00725EPSS
Exploits1References4
OSV
OSV
added 2022/03/16 12:0 a.m.25 views

GHSA-9FCC-7G44-MXRJ Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via uploading files with files in .xsd, .asa, and .aspx formats...

5.4CVSS5.1AI score0.0074EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.26 views

Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via file upload...

7.1CVSS2.5AI score0.00725EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.34 views

Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via uploading files with files in .xsd, .asa, and .aspx formats...

9.4CVSS2.2AI score0.0074EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/03/16 12:0 a.m.17 views

GHSA-3PG8-C473-W6RR Stored Cross-site Scripting in showdoc

ShowDoc is a tool for an IT team to share documents online. showdoc contains a stored cross-site scripting vulnerability in the File Library page when uploading a file in .ofd format in versions prior to 2.10.4. At this time, there is no known workaround. Users should update to version 2.10.4...

6.9CVSS5AI score0.03274EPSS
Exploits4References4
OSV
OSV
added 2022/03/16 12:0 a.m.25 views

GHSA-XM3X-787M-P66R Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via .webmv file upload...

5.4CVSS5.1AI score0.00825EPSS
Exploits1References4
OSV
OSV
added 2022/03/16 12:0 a.m.18 views

GHSA-V8MP-HHJQ-H4CJ Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via .ofd file upload...

5.4CVSS5.1AI score0.00888EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.18 views

Stored Cross-site Scripting in showdoc

ShowDoc is a tool for an IT team to share documents online. showdoc contains a stored cross-site scripting vulnerability in the File Library page when uploading a file in .ofd format in versions prior to 2.10.4. At this time, there is no known workaround. Users should update to version 2.10.4...

6.9CVSS1.8AI score0.03274EPSS
Exploits4References4Affected Software1
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.28 views

Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via .ofd file upload...

9CVSS2.5AI score0.00888EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.30 views

Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via .webmv file upload...

8CVSS2.5AI score0.00825EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/03/16 12:0 a.m.11 views

GHSA-G585-J55V-38H7 Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via file upload...

5.4CVSS5.1AI score0.00533EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.21 views

Cross-site Scripting in ShowDoc

ShowDoc prior to 2.10.4 is vulnerable to stored cross-site scripting via file upload...

6.4CVSS2.5AI score0.00533EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder