Lucene search
K

168 matches found

CNNVD
CNNVD
added 2024/03/20 12:0 a.m.5 views

Campcodes Online Job Finder System Cross-Site Scripting Vulnerability

Campcodes Online Job Finder System is an online job finder system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Online Job Finder System, which stems from a cross-site scripting vulnerability in the view parameter of the /admin/category/index.php...

6.1CVSS6.2AI score0.00595EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/03/20 12:0 a.m.4 views

Campcodes Online Job Finder System Cross-Site Scripting Vulnerability

Campcodes Online Job Finder System is an online job finder system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Online Job Finder System, which stems from a cross-site scripting vulnerability in the view parameter of the /admin/company/index.php...

6.1CVSS6.2AI score0.00599EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/03/20 12:0 a.m.2 views

Campcodes Online Job Finder System Cross-Site Scripting Vulnerability

Campcodes Online Job Finder System is an online job finder system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Online Job Finder System, which originates from a cross-site scripting vulnerability in the view parameter of the /admin/user/index.ph...

6.1CVSS6.1AI score0.00599EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/03/20 12:0 a.m.6 views

PT-2024-21512 · Unknown · Campcodes Online Job Finder System

Name of the Vulnerable Software and Affected Versions: Campcodes Online Job Finder System version 1.0 Description: A problem was found in the system. It affects an unknown part of the file /admin/vacancy/index.php. The manipulation of the argument view leads to cross site scripting. It is possibl...

6.1CVSS4.1AI score0.00618EPSS
Exploits1References6
VulnCheck KEV
VulnCheck KEV
added 2024/02/14 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-1061

The 'HTML5 Video Player' WordPress Plugin, version 2.5.25 is affected by an unauthenticated SQL injection vulnerability in the 'id' parameter in the 'getview' function...

9.8CVSS7.4AI score0.11125EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/08/15 12:0 a.m.4 views

PT-2023-28928 · Phprecdb · Phprecdb

Name of the Vulnerable Software and Affected Versions: phpRecDB version 1.3.1 Description: A vulnerability was found in the file /index.php of phpRecDB, where the manipulation of the argument r/view leads to cross-site scripting. The attack may be launched remotely. The vendor was contacted early...

6.1CVSS4.3AI score0.00312EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2023/05/29 12:0 a.m.5 views

PT-2023-12764 · Audiocodes · Audiocodes Device Manager Express

Name of the Vulnerable Software and Affected Versions: AudioCodes Device Manager Express versions through 7.8.20002.47752 Description: The issue concerns directory traversal during file download. This occurs via the view parameter in the "BrowseFiles.php" endpoint. Recommendations: For versions...

5.3CVSS5.2AI score0.27177EPSS
Exploits4References3
Positive Technologies
Positive Technologies
added 2023/04/05 12:0 a.m.4 views

PT-2023-17290 · Keysight · Keysight Ixia Hawkeye

Name of the Vulnerable Software and Affected Versions: Keysight IXIA Hawkeye version 3.3.16.28 Description: A problem has been found in the software. It affects unknown code in the /licenses file. The issue arises when the view argument is manipulated with a specific input, leading to cross-site...

6.1CVSS6.7AI score0.00388EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/04/02 12:0 a.m.5 views

PT-2023-17253 · Sourcecodester · Sourcecodester Gadget Works Online Ordering System

Name of the Vulnerable Software and Affected Versions: SourceCodester Gadget Works Online Ordering System version 1.0 Description: A problem was found in the processing of the file /admin/products/index.php, specifically in the GET Parameter Handler component. The issue can be exploited by...

6.1CVSS4.2AI score0.00549EPSS
Exploits1References5
OSV
OSV
added 2023/03/29 7:15 a.m.7 views

CVE-2023-1686

A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...

6.1CVSS3.6AI score0.00549EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.15 views

Young Entrepreneur E-Negosyo System 跨站脚本漏洞

Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in SourceCodester Young Entrepreneur E-Negosyo System version 1.0, which stems from incorrect manipulation of the parameter view leading to cross-site...

6.1CVSS4.3AI score0.00549EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/03/29 12:0 a.m.5 views

PT-2023-17169 · Sourcecodester · Sourcecodester Young Entrepreneur E-Negosyo System

Name of the Vulnerable Software and Affected Versions: SourceCodester Young Entrepreneur E-Negosyo System version 1.0 Description: A problem was found in the processing of the file bsenordering/admin/category/index.php, specifically in the GET Parameter Handler component. The issue allows for cro...

6.1CVSS4.1AI score0.00549EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/03/18 12:0 a.m.4 views

SourceCodester Monitoring of Students Cyber Accounts System 跨站脚本漏洞

Monitoring of Students Cyber Accounts System is a Monitoring of Students Cyber Accounts System by Chris Jim Egot Individual Developer. A cross-site scripting vulnerability exists in SourceCodester Monitoring of Students Cyber Accounts System version 1.0, which stems from an issue with the file...

6.1CVSS4.1AI score0.00559EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/02/24 12:0 a.m.6 views

AudioCodes Device Manager Express 路径遍历漏洞

AudioCodes Device Manager Express is a powerful lifecycle management tool for AudioCodes IP phones, EPOS and Jabra headsets and speakers from AudioCodes Israel. A path traversal vulnerability exists in AudioCodes Device Manager Express 7.8.20002.47752 and prior versions, which stems from a path...

5.3CVSS5.7AI score0.27177EPSS
Exploits4References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:2 a.m.2 views

SUSE CVE-2009-3618

Cross-site scripting XSS vulnerability in viewvc.py in ViewVC 1.0 before 1.0.9 and 1.1 before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the view parameter. NOTE: some of these details are obtained from third party information...

4.3CVSS6.1AI score0.01604EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/11/14 12:0 a.m.3 views

Rukovoditel SQL注入漏洞

Rukovoditel is a set of Web-based open source project management software from the Rukovoditel team. The software features project management, customer relationship management, and more. Rukovoditel v3.2.1 version of a security vulnerability , the vulnerability stems from the attacker can be...

8.8CVSS8.1AI score0.00826EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/06/23 5:15 p.m.2 views

CVE-2022-34192

Jenkins ontrack Jenkins Plugin 4.0.0 and earlier does not escape the name of Ontrack: Multi Parameter choice, Ontrack: Parameter choice, and Ontrack: SingleParameter parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers wi...

5.4CVSS6.2AI score0.00753EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/02 4:15 p.m.6 views

CVE-2022-32011

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/applicants/index.php?view=view&id=...

7.2CVSS7.2AI score0.00946EPSS
Exploits1References2
OSV
OSV
added 2022/06/02 4:15 p.m.6 views

CVE-2022-32011

Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/applicants/index.php?view=view&id=...

7.2CVSS5.8AI score0.00946EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/05/17 12:0 a.m.3 views

Jenkins Application Detector Plugin 跨站脚本漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. Jenkins Plugin is an application. Jenkins Application Detector 1.0.8 and earlier versions have a cross-site scripting vulnerability that stems from the program not properly escaping the view of the display...

5.4CVSS5.4AI score0.00715EPSS
Exploits0References3
Rows per page
Query Builder