Lucene search
K

88 matches found

BDU FSTEC
BDU FSTEC
added 2024/12/19 12:0 a.m.4 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.00477EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/16 12:0 a.m.6 views

The vulnerability of the remote management interface of the Veeam Backup & Replication software for cloud, virtual, and physical systems allows a perpetrator to disclose protected information.

The vulnerability of the remote management interface of the Veeam Backup & Replication software for cloud, virtual, and physical systems is related to insufficient protection of registration data. Exploiting these vulnerabilities could allow a malicious actor to disclose the protected information...

7.7CVSS7.2AI score0.00407EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/17 12:0 a.m.7 views

CVE-2024-52872

In Flagsmith before 2.134.1, the getdocument endpoint is not correctly protected by permissions...

7.2AI score0.00396EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.4 views

The vulnerability of the Alert Transports function in the LibreNMS network monitoring system allows a intruder to perform cross-site scripting attacks.

The vulnerability of the Alert Transports function in the LibreNMS network monitoring system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

8CVSS5.2AI score0.00585EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/07 12:0 a.m.8 views

The vulnerability of the Widget API component of the JetBrains YouTrack software tool allows a hacker to perform cross-site scripting attacks.

The vulnerability of the Widget API component of the JetBrains YouTrack software suite relates to the lack of security measures for protecting the website structure. Exploiting this vulnerability could allow attackers to perform cross-site scripting attacks...

6.4CVSS5.2AI score0.00329EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/24 12:0 a.m.5 views

The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform allows attackers to perform cross-site scripting attacks (XSS).

The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS by injecting malicious...

5.5CVSS5.2AI score0.12945EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/09/24 12:0 a.m.10 views

The vulnerability in the implementation of the OAuth2 protocol for managing databases in pgAdmin 4 allows a perpetrator to increase their privileges.

The vulnerability of the OAuth2 protocol implementation in the pgAdmin 4 database management tool is related to insufficient protection of registration data. Exploiting this vulnerability could allow a malicious actor to increase their privileges remotely...

9.9CVSS5.3AI score0.09685EPSS
Exploits2References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/08/12 12:0 a.m.5 views

The vulnerability of the gf_avc_change_vui() function on the GPAC multimedia platform allows a perpetrator to trigger a service failure.

The vulnerability of the gfavcchangevui function on the GPAC multimedia platform is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

7.8CVSS6.5AI score0.00764EPSS
Exploits1References4Affected Software2
Positive Technologies
Positive Technologies
added 2024/07/16 12:0 a.m.14 views

PT-2024-5684 · Unknown · Netcat Cms

Name of the Vulnerable Software and Affected Versions: Netcat CMS affected versions not specified Description: The issue exists due to inadequate protection of the web page structure in the netshop module of the Netcat CMS system. This allows a remote attacker to execute arbitrary JavaScript code...

9CVSS7.6AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/07/12 12:0 a.m.7 views

The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to carry out cross-site scripting attacks...

5.5CVSS5.2AI score0.0051EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/08 12:0 a.m.5 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.00473EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/06/05 12:0 a.m.6 views

The vulnerability of the implementation of the OAuth protocol in JetBrains TeamCity, a system for continuous integration and delivery of applications, allows attackers to perform cross-site scripting attacks.

The vulnerability of the OAuth implementation in JetBrains TeamCity’s CI/CD application integration system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.2AI score0.00267EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/28 12:0 a.m.5 views

The vulnerability of Adobe Experience Manager’s content and media data management system, which exists due to the lack of measures taken to protect the website structure, allows attackers to execute arbitrary JavaScript code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary JavaScript code using a specially created URL...

5.5CVSS5.9AI score0.00427EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/20 12:0 a.m.4 views

The vulnerability of the Adobe Experience Manager content and media data management system lies in the insufficient protection of website structures, which allows attackers to disclose protected information.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

3.4CVSS5.5AI score0.00427EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/02/25 12:0 a.m.5 views

The vulnerability of the Joomla! content management system lies in the lack of measures taken to protect the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Joomla! content management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.4CVSS5.9AI score0.3221EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/09 12:0 a.m.3 views

PT-2024-1032 · Microsoft · Message Queuing +1

Name of the Vulnerable Software and Affected Versions: Microsoft Message Queuing versions affected versions not specified Description: The issue is related to insufficient protection of service data in the Message Queuing component of Windows operating systems. It allows a remote attacker to gain...

6.8CVSS9.2AI score0.01997EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2024/01/06 12:0 a.m.7 views

The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to carry out XSS attacks.

The vulnerability of the Adobe Experience Manager content and media data management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks...

5.5CVSS5.9AI score0.00562EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/12/26 12:0 a.m.5 views

The vulnerability of the Zabbix universal monitoring system, related to the lack of measures taken to protect the website structure, allows attackers to gain access to confidential data and compromise its integrity.

The vulnerability of the Zabbix universal monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data and compromise its integrity...

6.4CVSS5.9AI score0.00559EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/11/27 12:0 a.m.5 views

The vulnerability in the web interface of Cisco IP phones allows attackers to carry out cross-site scripting attacks.

The vulnerability of Cisco IP Phones’ web interfaces exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

5.5CVSS5.8AI score0.00459EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/11/22 12:0 a.m.7 views

The vulnerability of the Windows operating system’s kernel allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows operating system’s kernel is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.5CVSS6.6AI score0.00761EPSS
Exploits0References3
Rows per page
Query Builder