Lucene search
K

56 matches found

RedhatCVE
RedhatCVE
added 2025/11/19 9:9 a.m.8 views

CVE-2025-26391

SolarWinds Observability Self-Hosted XSS Vulnerability. The SolarWinds Platform was susceptible to a XSS vulnerability that affects user-created URL fields. This vulnerability requires authentication from a low-level account...

5.4CVSS6.5AI score0.00395EPSS
Exploits0References1
NVD
NVD
added 2025/11/18 9:15 a.m.7 views

CVE-2025-40545

SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The URL is not properly sanitized, and an attacker could manipulate the string to redirect a user to a malicious site. The attack complexity is high, and authentication is required...

4.8CVSS0.00205EPSS
Exploits0References2
OSV
OSV
added 2025/11/18 9:15 a.m.7 views

CVE-2025-40545

SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The URL is not properly sanitized, and an attacker could manipulate the string to redirect a user to a malicious site. The attack complexity is high, and authentication is required...

4.4CVSS5.7AI score0.00205EPSS
Exploits0References2
NVD
NVD
added 2025/11/18 9:15 a.m.9 views

CVE-2025-26391

SolarWinds Observability Self-Hosted XSS Vulnerability. The SolarWinds Platform was susceptible to a XSS vulnerability that affects user-created URL fields. This vulnerability requires authentication from a low-level account...

5.4CVSS0.00395EPSS
Exploits0References2
CVE
CVE
added 2025/11/18 8:55 a.m.11 views

CVE-2025-40545

Affected product: SolarWinds Observability Self-Hosted. Vulnerability: Open redirection due to improper URL sanitization in the application. Root cause / nature: URL handling allows manipulation of the redirect target. Impact (as stated): Potential to redirect users to a malicious site (confident...

4.8CVSS6.4AI score0.00205EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/18 8:55 a.m.7 views

CVE-2025-40545 SolarWinds Observability Self-Hosted Open Redirection Vulnerability

SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The URL is not properly sanitized, and an attacker could manipulate the string to redirect a user to a malicious site. The attack complexity is high, and authentication is required...

4.8CVSS6.4AI score0.00205EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/18 8:55 a.m.5 views

EUVD-2025-197926

SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The URL is not properly sanitized, and an attacker could manipulate the string to redirect a user to a malicious site. The attack complexity is high, and authentication is required...

4.8CVSS6.3AI score0.00205EPSS
Exploits0References3
EUVD
EUVD
added 2025/11/18 8:53 a.m.4 views

EUVD-2025-197927

SolarWinds Observability Self-Hosted XSS Vulnerability. The SolarWinds Platform was susceptible to a XSS vulnerability that affects user-created URL fields. This vulnerability requires authentication from a low-level account...

5.4CVSS6AI score0.00395EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/18 8:53 a.m.3 views

CVE-2025-26391 SolarWinds Observability Self-Hosted XSS Vulnerability

SolarWinds Observability Self-Hosted XSS Vulnerability. The SolarWinds Platform was susceptible to a XSS vulnerability that affects user-created URL fields. This vulnerability requires authentication from a low-level account...

5.4CVSS6.1AI score0.00395EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/18 8:53 a.m.9 views

CVE-2025-26391 SolarWinds Observability Self-Hosted XSS Vulnerability

SolarWinds Observability Self-Hosted XSS Vulnerability. The SolarWinds Platform was susceptible to a XSS vulnerability that affects user-created URL fields. This vulnerability requires authentication from a low-level account...

5.4CVSS0.00395EPSS
Exploits0References2
CVE
CVE
added 2025/11/18 8:53 a.m.18 views

CVE-2025-26391

CVE-2025-26391: SolarWinds Observability Self-Hosted exposes a cross-site scripting (XSS) vulnerability in user-created URL fields of the SolarWinds Platform. The issue requires authentication from a low-privilege account. Public exploitation details or concrete remediation are not provided in th...

5.4CVSS6.1AI score0.00395EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.6 views

SolarWinds Observability Self-Hosted 输入验证错误漏洞

SolarWinds Observability Self-Hosted is an observation platform from SolarWinds USA. SolarWinds Observability Self-Hosted suffers from an input validation error vulnerability that stems from improper URL cleanup, which could lead to an open redirection attack...

4.8CVSS6.7AI score0.00205EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.7 views

SolarWinds Observability Self-Hosted 跨站脚本漏洞

SolarWinds Observability Self-Hosted is an observation platform from SolarWinds, Inc. A cross-site scripting vulnerability exists in SolarWinds Observability Self-Hosted, which stems from a cross-site scripting vulnerability in a user-created URL field that could lead to an attack by a...

5.4CVSS6AI score0.00395EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/18 12:0 a.m.5 views

PT-2025-47274

Name of the Vulnerable Software and Affected Versions SolarWinds Observability Self-Hosted affected versions not specified Description SolarWinds Observability Self-Hosted is affected by an open redirection issue. The application does not properly sanitize URLs, allowing an attacker to redirect a...

4.8CVSS6.5AI score0.00205EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/10/22 8:18 a.m.4 views

CVE-2025-26392

SolarWinds Observability Self-Hosted is susceptible to SQL injection vulnerability that may display sensitive data using a low-level account. This vulnerability requires authentication from a low-privilege account...

5.4CVSS8.1AI score0.00214EPSS
Exploits0References1
OSV
OSV
added 2025/10/21 8:15 a.m.4 views

CVE-2025-26392

SolarWinds Observability Self-Hosted is susceptible to SQL injection vulnerability that may display sensitive data using a low-level account. This vulnerability requires authentication from a low-privilege account...

4.6CVSS5.8AI score0.00214EPSS
Exploits0References2
NVD
NVD
added 2025/10/21 8:15 a.m.6 views

CVE-2025-26392

SolarWinds Observability Self-Hosted is susceptible to SQL injection vulnerability that may display sensitive data using a low-level account. This vulnerability requires authentication from a low-privilege account...

5.4CVSS0.00214EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/21 7:46 a.m.6 views

CVE-2025-26392 SolarWinds Observability Self-Hosted SQL Injection Vulnerability

SolarWinds Observability Self-Hosted is susceptible to SQL injection vulnerability that may display sensitive data using a low-level account. This vulnerability requires authentication from a low-privilege account...

5.4CVSS0.00214EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/21 7:46 a.m.4 views

EUVD-2025-35157

SolarWinds Observability Self-Hosted is susceptible to SQL injection vulnerability that may display sensitive data using a low-level account. This vulnerability requires authentication from a low-privilege account...

5.4CVSS7.5AI score0.00214EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/10/21 7:46 a.m.3 views

CVE-2025-26392 SolarWinds Observability Self-Hosted SQL Injection Vulnerability

SolarWinds Observability Self-Hosted is susceptible to SQL injection vulnerability that may display sensitive data using a low-level account. This vulnerability requires authentication from a low-privilege account...

5.4CVSS7.7AI score0.00214EPSS
Exploits0References2
Rows per page
Query Builder