Lucene search
K

32 matches found

OSV
OSV
added 2022/07/15 8:15 a.m.4 views

CVE-2022-29890

In affected versions of Octopus Server the help sidebar can be customized to include a Cross-Site Scripting payload in the support link...

6.1CVSS6.3AI score0.00433EPSS
Exploits0References1
NVD
NVD
added 2022/07/15 8:15 a.m.30 views

CVE-2022-29890

In affected versions of Octopus Server the help sidebar can be customized to include a Cross-Site Scripting payload in the support link...

6.1CVSS0.00433EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/07/15 8:15 a.m.4 views

CVE-2022-29890

In affected versions of Octopus Server the help sidebar can be customized to include a Cross-Site Scripting payload in the support link...

6.1CVSS6.3AI score0.00433EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/07/15 8:15 a.m.18 views

Cross site scripting

In affected versions of Octopus Server the help sidebar can be customized to include a Cross-Site Scripting payload in the support link...

5.8CVSS6AI score0.00433EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/07/15 7:40 a.m.24 views

CVE-2022-29890

In affected versions of Octopus Server the help sidebar can be customized to include a Cross-Site Scripting payload in the support link...

6.2AI score0.00433EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/04/15 12:0 a.m.9 views

ZSQL: Audit Level

Audit logs are important in tracing data, locating faults, and clarifying responsibilities after security events occur. Database audit is configured by setting the AUDITLEVEL parameter. AUDITLEVEL = 0 disables audit logs. If AUDITLEVEL is set to a value greater than 0, audit logs are enabled, and...

7.3AI score
Exploits0References1
OSV
OSV
added 2017/10/16 1:29 a.m.15 views

CVE-2017-15362

osTicket 1.10.1 allows arbitrary client-side JavaScript code execution on victims who click a crafted support/scp/tickets.php?status= link, aka XSS. Session ID and data theft may follow as well as the possibility of bypassing CSRF protections, injection of iframes to establish communication...

6.1CVSS7.9AI score0.0121EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/04/13 12:0 a.m.39 views

Microsoft SharePoint Server Excel Services Remote Code Execution Vulnerability (3148775)

This host is missing an important security update according to Microsoft Bulletin MS16-042. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

9.3CVSS7.4AI score0.20717EPSS
Exploits0References4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.32 views

tsmim Lessons Library (show.php) SQL Injection

No description provided by source. =================================================================================== tsmim lessons library sql injection Vulnerabilities =================================================================================== Exploit Title: tsmim lessons library sql...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/10/07 12:0 a.m.32 views

URL Shortener Script 1.0 SQL Injection

=================================================================================== url shortener script 1.0 sql injection Vulnerabilities =================================================================================== Exploit Title: url shortener script 1.0 sql injection Vulnerabilities...

0.5AI score
Exploits0
Atlassian
Atlassian
added 2011/05/06 8:26 p.m.22 views

When configured for Internal Database with LDAP for Authentication Only, Confluence does not check the LDAP when authenticating users

Configured Confluence to keep and manage users in its internal database, but to first try to use LDAP for authentication only, via the new interface. Debug output suggests Confluence is not bothering to check the LDAP at any point during the authentication process. More detail is available here:...

1.6AI score
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2004/08/27 12:0 a.m.20 views

AIX 5.1 : IY37144

The remote host is missing AIX Critical Security Patch number IY37144 SECURITY: Security issue in diag script. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

5.5AI score
Exploits0
Rows per page
Query Builder