Lucene search
K

155 matches found

Vulnrichment
Vulnrichment
added 2022/06/29 4:15 p.m.7 views

CVE-2017-20116 TrueConf Server Reflected cross site scripting

A vulnerability was found in TrueConf Server 4.3.7. It has been classified as problematic. Affected is an unknown function of the file /admin/group/list/. The manipulation of the argument checkedgroupid leads to basic cross site scripting Reflected. It is possible to launch the attack remotely. T...

3.5CVSS6.4AI score0.00577EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/06/29 4:15 p.m.15 views

CVE-2017-20115 TrueConf Server Reflected cross site scripting

A vulnerability was found in TrueConf Server 4.3.7 and classified as problematic. This issue affects some unknown processing of the file /admin/conferences/list/. The manipulation of the argument sort leads to basic cross site scripting Reflected. The attack may be initiated remotely. The exploit...

3.5CVSS6.2AI score0.00577EPSS
Exploits1References2
CVE
CVE
added 2022/06/29 4:15 p.m.57 views

CVE-2017-20115

CVE-2017-20115 affects TrueConf Server 4.3.7. The issue is a reflected cross-site scripting vulnerability in the handling of the sort parameter for the /admin/conferences/list/ endpoint. This can be triggered remotely and has been publicly disclosed. Public references indicate multiple corroborat...

5.4CVSS4.6AI score0.00577EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/06/29 4:15 p.m.5 views

CVE-2017-20115 TrueConf Server Reflected cross site scripting

A vulnerability was found in TrueConf Server 4.3.7 and classified as problematic. This issue affects some unknown processing of the file /admin/conferences/list/. The manipulation of the argument sort leads to basic cross site scripting Reflected. The attack may be initiated remotely. The exploit...

3.5CVSS6.4AI score0.00577EPSS
Exploits1References2
CVE
CVE
added 2022/06/29 4:15 p.m.52 views

CVE-2017-20114

TrueConf Server 4.3.7 contains a reflected cross-site scripting vulnerability in /admin/conferences/get-all-status/ caused by unsanitized keys[] input. The issue can be exploited remotely and an exploit has been disclosed publicly (referenced in multiple sources). Public-enabling details include ...

5.4CVSS4.7AI score0.00577EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/06/29 4:15 p.m.7 views

CVE-2017-20114 TrueConf Server Reflected cross site scripting

A vulnerability has been found in TrueConf Server 4.3.7 and classified as problematic. This vulnerability affects unknown code of the file /admin/conferences/get-all-status/. The manipulation of the argument keys leads to basic cross site scripting Reflected. The attack can be initiated remotely...

3.5CVSS5.7AI score0.00577EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/06/29 4:15 p.m.25 views

CVE-2017-20114 TrueConf Server Reflected cross site scripting

A vulnerability has been found in TrueConf Server 4.3.7 and classified as problematic. This vulnerability affects unknown code of the file /admin/conferences/get-all-status/. The manipulation of the argument keys leads to basic cross site scripting Reflected. The attack can be initiated remotely...

3.5CVSS6.2AI score0.00577EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/06/29 4:15 p.m.5 views

CVE-2017-20113 TrueConf Server Stored cross site scripting

A vulnerability, which was classified as problematic, was found in TrueConf Server 4.3.7. This affects an unknown part. The manipulation leads to basic cross site scripting Stored. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...

3.5CVSS6.4AI score0.00577EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/06/29 4:15 p.m.25 views

CVE-2017-20113 TrueConf Server Stored cross site scripting

A vulnerability, which was classified as problematic, was found in TrueConf Server 4.3.7. This affects an unknown part. The manipulation leads to basic cross site scripting Stored. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...

3.5CVSS6.2AI score0.00577EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/06/29 12:0 a.m.7 views

PT-2022-7987 · Trueconf · Trueconf Server

Name of the Vulnerable Software and Affected Versions: TrueConf Server version 4.3.7 Description: A problematic issue affects some unknown functionality of the file "/admin/conferences/list/". The manipulation of the argument domxss leads to basic cross site scripting DOM. The attack may be...

5.4CVSS5.3AI score0.00577EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/06/29 12:0 a.m.7 views

PT-2022-3296 · Trueconf · Trueconf Server

Name of the Vulnerable Software and Affected Versions: TrueConf Server version 4.3.7 Description: A problematic vulnerability has been found in TrueConf Server, affecting an unknown part of the file /admin/general/change-lang. The manipulation of the redirect url argument leads to an open redirec...

6.1CVSS6.2AI score0.00674EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2022/06/29 12:0 a.m.7 views

PT-2022-3299 · Trueconf · Trueconf Server

Name of the Vulnerable Software and Affected Versions: TrueConf Server version 4.3.7 Description: A vulnerability has been found in the /admin/conferences/get-all-status/ component of TrueConf Server, related to the failure to neutralize script-related HTML tags on a web page. The manipulation of...

5.4CVSS5.2AI score0.00577EPSS
Exploits1References6
CNNVD
CNNVD
added 2022/06/29 12:0 a.m.4 views

TrueConf Server 跨站脚本漏洞

TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. version 4.3.7 of TrueConf Server contains a cross-site scripting vulnerability that can be exploited by remote attackers to perform basic cross-site scripting DOM attacks...

5.4CVSS5.2AI score0.00577EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/29 12:0 a.m.20 views

TrueConf Server 跨站脚本漏洞

TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. version 4.3.7 of TrueConf Server contains a cross-site scripting vulnerability that could be exploited by remote attackers to perform basic cross-site scripting Reflected attacks...

5.4CVSS5.2AI score0.00577EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/29 12:0 a.m.4 views

TrueConf Server 跨站脚本漏洞

TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. version 4.3.7 of TrueConf Server contains a cross-site scripting vulnerability that can be exploited by remote attackers to perform basic cross-site scripting DOM attacks...

5.4CVSS5.2AI score0.00577EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/06/29 12:0 a.m.8 views

PT-2022-3297 · Trueconf · Trueconf Server

Name of the Vulnerable Software and Affected Versions: TrueConf Server version 4.3.7 Description: The issue is related to the lack of neutralization of script-related HTML tags on a web page, specifically affecting the /admin/conferences/list/ file. The manipulation of the sort argument leads to...

5.4CVSS5.2AI score0.00577EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2022/06/29 12:0 a.m.5 views

PT-2022-3298 · Trueconf · Trueconf Server

Name of the Vulnerable Software and Affected Versions: TrueConf Server version 4.3.7 Description: The issue is related to the failure to neutralize script-related HTML tags on a web page, which can lead to basic cross-site scripting Stored. This can be initiated remotely. The exploit has been...

5.4CVSS5.1AI score0.00577EPSS
Exploits1References5
CNNVD
CNNVD
added 2022/06/29 12:0 a.m.3 views

TrueConf Server 输入验证错误漏洞

TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. TrueConf Server version 4.3.7 is vulnerable to an input validation error that could be exploited by remote attackers to perform open redirect attacks...

6.1CVSS5.6AI score0.00674EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/29 12:0 a.m.27 views

TrueConf Server 跨站脚本漏洞

TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. version 4.3.7 of TrueConf Server is vulnerable to a cross-site scripting vulnerability that originates from unknown code in the file /admin/conferences/get-all-status/, with the parameter...

5.4CVSS5.6AI score0.00577EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/29 12:0 a.m.6 views

TrueConf Server 跨站脚本漏洞

TrueConf Server is a self-hosted and secure video collaboration platform from the Russian company TrueConf. version 4.3.7 of TrueConf Server is vulnerable to a cross-site scripting vulnerability that could be exploited by attackers to execute arbitrary HTML and script code in the user's browser...

5.4CVSS5.7AI score0.00577EPSS
Exploits1References3
Rows per page
Query Builder