Lucene search
K

203 matches found

Positive Technologies
Positive Technologies
added 2025/04/24 12:0 a.m.4 views

PT-2025-17934

Name of the Vulnerable Software and Affected Versions ScreenConnect versions 25.2.3 and earlier Description The issue concerns a ViewState code injection attack in ScreenConnect, which uses ASP.NET Web Forms to preserve page and control state. The data is encoded using Base64 and protected by...

8.1CVSS9.5AI score0.03292EPSS
Exploits0References64
CISA KEV Catalog
CISA KEV Catalog
added 2025/04/08 12:0 a.m.52 views

Gladinet CentreStack and Triofox Use of Hard-coded Cryptographic Key Vulnerability

Gladinet CentreStack and Triofox contains a use of hard-coded cryptographic key vulnerability in the way that the application manages keys used for ViewState integrity verification. Successful exploitation allows an attacker to forge ViewState payloads for server-side deserialization, allowing fo...

9.8CVSS9.6AI score0.93842EPSS
In wildExploits6
VulnCheck KEV
VulnCheck KEV
added 2025/04/04 12:0 a.m.2 views

VulnCheck KEV: CVE-2025-30406

Gladinet CentreStack and Triofox contains a use of hard-coded cryptographic key vulnerability in the way that the application manages keys used for ViewState integrity verification. Successful exploitation allows an attacker to forge ViewState payloads for server-side deserialization, allowing...

9.8CVSS5.8AI score0.93842EPSS
Exploits6References1
The Hacker News
The Hacker News
added 2025/02/07 11:1 a.m.23 views

Microsoft Identifies 3,000 Leaked ASP.NET Keys Enabling Code Injection Attacks

Microsoft is warning of an insecure practice wherein software developers are incorporating publicly disclosed ASP.NET machine keys from publicly accessible resources, thereby putting their applications in attackers' pathway. The tech giant's threat intelligence team said it observed limited...

8.8AI score
Exploits0
NVD
NVD
added 2024/12/06 9:15 p.m.18 views

CVE-2024-7874

Tungsten Automation Kofax TotalAgility in versions all through 7.9.0.25.0.954 is vulnerable to a Reflected XSS attacks through mfpConnectionId parameter manipulation in a form sent to endpoints "/TotalAgility/Kofax/BrowserDevice/ScanFront.aspx"...

5.3CVSS0.00503EPSS
Exploits0References3
CVE
CVE
added 2024/12/06 8:55 p.m.53 views

CVE-2024-7875

CVE-2024-7875 affects Tungsten Automation (Kofax) TotalAgility up to version 7.9.0.25.0.954. The vulnerability is a Reflected XSS in the ScanFront.aspx endpoints where mfpScreenResolutionWidth is manipulated via POST data. An attacker can inject JavaScript code, leading to information disclosure,...

5.3CVSS6.2AI score0.00503EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/06 8:54 p.m.8 views

CVE-2024-7874 XSS in Tungsten Automation TotalAgility

Tungsten Automation Kofax TotalAgility in versions all through 7.9.0.25.0.954 is vulnerable to a Reflected XSS attacks through mfpConnectionId parameter manipulation in a form sent to endpoints "/TotalAgility/Kofax/BrowserDevice/ScanFront.aspx"...

5.3CVSS6.3AI score0.00503EPSS
Exploits0References3
CVE
CVE
added 2024/12/06 8:54 p.m.65 views

CVE-2024-7874

CVE-2024-7874 affects Tungsten Automation TotalAgility versions up to 7.9.0.25.0.954. The vulnerability is a Reflected Cross‑Site Scripting (XSS) via the mfpConnectionId parameter in forms posted to /TotalAgility/Kofax/BrowserDevice/ScanFront.aspx and /TotalAgility/Kofax/BrowserDevice/ScanFrontDe...

5.3CVSS6.2AI score0.00503EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/12/06 12:0 a.m.4 views

PT-2024-38650 · Kofax · Totalagility

Name of the Vulnerable Software and Affected Versions: Tungsten Automation Kofax TotalAgility versions all through 7.9.0.25.0.954 Description: The issue is a Reflected XSS vulnerability that can be exploited through manipulation of the mfpConnectionId parameter in a form sent to endpoints...

5.3CVSS6.2AI score0.00503EPSS
Exploits0References6
VulnCheck KEV
VulnCheck KEV
added 2024/08/28 12:0 a.m.5 views

VulnCheck KEV: CVE-2024-13980

H3C Intelligent Management Center IMC versions up to and including E0632H07 contains a remote command execution vulnerability in the /byod/index.xhtml endpoint. Improper handling of JSF ViewState allows unauthenticated attackers to craft POST requests with forged javax.faces.ViewState...

10CVSS6AI score0.01176EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2024/07/24 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-41642

Multiple reflected cross-site scripting XSS vulnerabilities in the ErroreNonGestito.aspx component of GruppoSCAI RealGimm 1.1.37p38 allow attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload injected into the VIEWSTATE parameter...

6.1CVSS5.9AI score0.01071EPSS
Exploits1References1
OSV
OSV
added 2024/06/06 1:15 p.m.5 views

CVE-2024-5675

Untrusted data deserialization vulnerability has been found in Mentor - Employee Portal, affecting version 3.83.35. This vulnerability could allow an attacker to execute arbitrary code, by injecting a malicious payload into the “ViewState” field...

9.8CVSS6AI score0.00637EPSS
Exploits0References1
NVD
NVD
added 2024/06/06 1:15 p.m.22 views

CVE-2024-5675

Untrusted data deserialization vulnerability has been found in Mentor - Employee Portal, affecting version 3.83.35. This vulnerability could allow an attacker to execute arbitrary code, by injecting a malicious payload into the “ViewState” field...

10CVSS9.7AI score0.00637EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/06 12:10 p.m.19 views

CVE-2024-5675 Unreliable data deserialization vulnerability in Mentor

Untrusted data deserialization vulnerability has been found in Mentor - Employee Portal, affecting version 3.83.35. This vulnerability could allow an attacker to execute arbitrary code, by injecting a malicious payload into the “ViewState” field...

10CVSS9.7AI score0.00637EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/06 12:10 p.m.11 views

CVE-2024-5675 Unreliable data deserialization vulnerability in Mentor

Untrusted data deserialization vulnerability has been found in Mentor - Employee Portal, affecting version 3.83.35. This vulnerability could allow an attacker to execute arbitrary code, by injecting a malicious payload into the “ViewState” field...

10CVSS7.7AI score0.00637EPSS
Exploits0References1
CVE
CVE
added 2024/06/06 12:10 p.m.56 views

CVE-2024-5675

CVE-2024-5675 affects Mentor – Employee Portal (version 3.83.35). Untrusted data deserialization in the ViewState field can allow arbitrary code execution. Networks and no user interaction are required per CVSS data; impact is high across confidentiality, integrity and availability. No remediatio...

10CVSS9.7AI score0.00637EPSS
Exploits0References1Affected Software1
Rapid7 Blog
Rapid7 Blog
added 2024/03/15 6:20 p.m.59 views

Metasploit Wrap-Up 03/15/2024

New module content 3 GitLab Password Reset Account Takeover Authors: asterion04 and h00die Type: Auxiliary Pull request: 18716 contributed by h00die Path: admin/http/gitlabpasswordresetaccounttakeover AttackerKB reference: CVE-2023-7028 Description: This adds an exploit module that leverages an...

7.5CVSS8.7AI score0.99938EPSS
Exploits53
OSV
OSV
added 2023/10/17 5:15 a.m.5 views

CVE-2023-34209

Exposure of Sensitive System Information to an Unauthorized Control Sphere in create template function in EasyUse MailHunter Ultimate 2023 and earlier allow remote authenticated users to obtain the absolute path via unencrypted VIEWSTATE parameter...

4.3CVSS5.8AI score0.00429EPSS
Exploits0References1
NVD
NVD
added 2023/10/17 5:15 a.m.25 views

CVE-2023-34209

Exposure of Sensitive System Information to an Unauthorized Control Sphere in create template function in EasyUse MailHunter Ultimate 2023 and earlier allow remote authenticated users to obtain the absolute path via unencrypted VIEWSTATE parameter...

5CVSS4.8AI score0.00429EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/17 4:0 a.m.32 views

CVE-2023-34209 Exposure of Sensitive System Information to an Unauthorized Control Sphere in EasyUse MailHunter Ultimate

Exposure of Sensitive System Information to an Unauthorized Control Sphere in create template function in EasyUse MailHunter Ultimate 2023 and earlier allow remote authenticated users to obtain the absolute path via unencrypted VIEWSTATE parameter...

5CVSS5.2AI score0.00429EPSS
Exploits0References1
Rows per page
Query Builder