25 matches found
EUVD-2022-37739
Malicious code in bioql PyPI...
EUVD-2022-37738
Malicious code in bioql PyPI...
EUVD-2022-37740
Malicious code in bioql PyPI...
CVE-2022-34834
An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log...
CVE-2022-34833
An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component...
CVE-2022-34832
An issue was discovered in VERMEG AgileReporter 21.3. XXE can occur via an XML document to the Analysis component...
CVE-2022-34834
An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log...
CVE-2022-34832
An issue was discovered in VERMEG AgileReporter 21.3. XXE can occur via an XML document to the Analysis component...
CVE-2022-34832
An issue was discovered in VERMEG AgileReporter 21.3. XXE can occur via an XML document to the Analysis component...
CVE-2022-34833
An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component...
CVE-2022-34833
An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component...
CVE-2022-34832
An issue was discovered in VERMEG AgileReporter 21.3. XXE can occur via an XML document to the Analysis component...
CVE-2022-34833
An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component...
Cross site scripting
An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log...
Design/Logic Flaw
An issue was discovered in VERMEG AgileReporter 21.3. XXE can occur via an XML document to the Analysis component...
Cross site scripting
An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component...
CVE-2022-34833
Summary: CVE-2022-34833 affects VERMEG AgileReporter 21.3. An administrator can inject an XSS payload via the Analysis component. The vulnerability’s CVSS-3.1 base score is 5.4 (Medium) with user interaction required and a changed scope; impact is limited to Confidentiality and Integrity (Low), n...
PT-2023-13421 · Vermeg · Vermeg Agilereporter
Name of the Vulnerable Software and Affected Versions: VERMEG AgileReporter version 21.3 Description: An issue was discovered in VERMEG AgileReporter where XXE can occur via an XML document to the Analysis component. Recommendations: For VERMEG AgileReporter version 21.3, consider restricting...
CVE-2022-34834
An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log...
CVE-2022-34833
An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component...