Lucene search
K

30 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:59 a.m.2 views

SUSE CVE-2010-1459

The default configuration of ASP.NET in Mono before 2.6.4 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting XSS attacks, as demonstrated by the VIEWSTATE parameter to 2.0/menu/menu1.aspx in the XSP sample project...

4.3CVSS6.2AI score0.01931EPSS
Exploits0References5
NVD
NVD
added 2022/06/17 5:15 p.m.18 views

CVE-2022-30422

Proietti Tech srl Planet Time Enterprise 4.2.0.1,4.2.0.0,4.1.0.0,4.0.0.0,3.3.1.0,3.3.0.0 is vulnerable to Remote code execution via the Viewstate parameter...

10CVSS0.03894EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/06/17 5:15 p.m.7 views

CVE-2022-30422

Proietti Tech srl Planet Time Enterprise 4.2.0.1,4.2.0.0,4.1.0.0,4.0.0.0,3.3.1.0,3.3.0.0 is vulnerable to Remote code execution via the Viewstate parameter...

10CVSS7.8AI score0.03894EPSS
Exploits1References3
OSV
OSV
added 2022/06/17 5:15 p.m.4 views

CVE-2022-30422

Proietti Tech srl Planet Time Enterprise 4.2.0.1,4.2.0.0,4.1.0.0,4.0.0.0,3.3.1.0,3.3.0.0 is vulnerable to Remote code execution via the Viewstate parameter...

9.8CVSS7.7AI score0.03894EPSS
Exploits1References2
Prion
Prion
added 2022/06/17 5:15 p.m.18 views

Remote code execution

Proietti Tech srl Planet Time Enterprise 4.2.0.1,4.2.0.0,4.1.0.0,4.0.0.0,3.3.1.0,3.3.0.0 is vulnerable to Remote code execution via the Viewstate parameter...

10CVSS9.6AI score0.03894EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/06/17 4:11 p.m.23 views

CVE-2022-30422

Proietti Tech srl Planet Time Enterprise 4.2.0.1,4.2.0.0,4.1.0.0,4.0.0.0,3.3.1.0,3.3.0.0 is vulnerable to Remote code execution via the Viewstate parameter...

9.9AI score0.03894EPSS
Exploits1References2
CVE
CVE
added 2022/06/17 4:11 p.m.62 views

CVE-2022-30422

Planet Time Enterprise by Proietti Tech Srl (versions 4.2.0.1, 4.2.0.0, 4.1.0.0, 4.0.0.0, 3.3.1.0, 3.3.0.0) is affected by CVE-2022-30422 due to a remote code execution vulnerability originating from the Viewstate parameter. The Red Hat, NVD, and CVE records consistently describe this as a remote...

10CVSS9.6AI score0.03894EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2017/10/05 8:32 a.m.7 views

Remote Code Execution (RCE)

myfaces-impl is vulnerable to remote code execution RCE attacks. If the ViewState parameter in a JSF page is not encrypted, a malicious user can use it to inject arbitrary code that is executed when sent to the server to be deserialized...

7.8AI score
Exploits0
NVD
NVD
added 2010/12/09 9:0 p.m.23 views

CVE-2010-4514

Cross-site scripting XSS vulnerability in Install/InstallWizard.aspx in DotNetNuke 5.05.01 and 5.06.00 allows remote attackers to inject arbitrary web script or HTML via the VIEWSTATE parameter. NOTE: some of these details are obtained from third party information...

4.3CVSS5.7AI score0.01539EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2010/06/09 12:0 a.m.34 views

Microsoft .NET 'ASP.NET' Cross-Site Scripting vulnerability

The host is running Microsoft .NET and is prone to Cross-Site Scripting Vulnerability. OpenVAS Vulnerability Test $Id: gbmsdotnetxssvuln.nasl 6519 2017-07-04 14:08:14Z cfischer $ Microsoft .NET 'ASP.NET' Cross-Site Scripting Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbone...

4.3CVSS6.3AI score0.08996EPSS
Exploits2References2
Rows per page
Query Builder