36 matches found
The vulnerability of the CI/CD application integration and delivery system JetBrains TeamCity, related to the lack of security measures for website structures, allows attackers to perform cross-site scripting attacks (XSS).
The vulnerability of the Continuous Integration and Deployment Application Delivery system CI/CD of TeamCity by JetBrains is related to the lack of measures taken to protect the structure of the agentpushPreset web page. Exploiting this vulnerability could allow a malicious actor to perform...
The vulnerability of the software product lies in its ability to identify, simulate, and visualize application architectures in real time. The IBMTivoli Application Dependency Discovery Manager (TADDM) is susceptible to this vulnerability due to the lack of measures taken to protect the structure of web pages. This allows attackers to execute cross-site scripting attacks.
The vulnerability of the software product for identifying, modeling, and visualizing application architectures in real time – IBMTivoli Application Dependency Discovery Manager TADDM – is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability...
The vulnerability of the Apache Felix HTTP Webconsole plugin, which stems from the lack of protective measures for website structure, allows attackers to perform cross-site scripting attacks.
The vulnerability of the Apache Felix HTTP Webconsole plugin is related to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform allows a perpetrator to execute arbitrary code.
The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform is related to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of Google Chrome’s Custom Tabs component, which allows a hacker to increase their privileges.
The vulnerability of Google Chrome’s Custom Tabs component is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability can allow a malicious actor to enhance their privileges through a specially created application...
The vulnerability of the WEBGUI component of the SAP NetWeaver Application Server ABAP software integration platform allows a attacker to perform XSS attacks.
The vulnerability of the WEBGUI component of the SAP NetWeaver Application Server ABAP software integration platform exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
The vulnerability of the Compositing component in Google Chrome and Microsoft Edge browsers allows attackers to replace the user interface.
The vulnerability of the Compositing component in Google Chrome and Microsoft Edge exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to replace the user interface with a specially created HTML page...
CVE-2024-9427
A vulnerability in Koji was found. An unsanitized input allows for an XSS attack. Javascript code from a malicious link could be reflected in the resulting web page. It is not expected to be able to submit an action or make a change in Koji due to existing XSS protections in the code...
The vulnerability of the Message Handler component in the multi-platform web solution for creating Scada systems, Scada-LTS, allows attackers to perform cross-site scripting attacks.
The vulnerability of the Message Handler component in the multi-platform web solution for creating Scada systems is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allows attackers to perform cross-site scripting attacks...
The vulnerability of the Netcat CMS system’s comment module allows a hacker to execute arbitrary JavaScript code.
The vulnerability of the Netcat CMS system’s comment module exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code in the user’s browser remotely...
The vulnerability of the Code Inspection control element in the CI/CD application integration and delivery system by JetBrains TeamCity allows attackers to perform cross-site scripting attacks.
The vulnerability of the Code Inspection control element in the CI/CD application integration and delivery system of JetBrains TeamCity is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-page...
The vulnerability in the web-based client of IBM Datacap software for document collection and processing allows attackers to execute cross-site scripting attacks, due to the lack of security measures taken to protect the structure of the web page.
The vulnerability of the IBM Datacap Navigator web client software for document collection and processing exists due to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...
The vulnerability of the Rich Text Editor component in the Querybook big data processing environment allows a hacker to execute arbitrary code.
The vulnerability of the Rich Text Editor component in the Querybook big data processing environment is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system, related to the lack of measures taken to protect the website structure, allows a perpetrator to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the status_logs_filter_dynamic.php component of the software network interface card based on the FreeBSD Netgate pfSense operating system allows a intruder to enhance their privileges.
The vulnerability of the statuslogsfilterdynamic.php component of the software network interface layer based on the FreeBSD Netgate pfSense operating system is related to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability can allow a...
The vulnerability of the Ditty plugin in the WordPress content management system allows a hacker to execute XSS attacks.
The vulnerability of the Ditty plugin of the WordPress content management system exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
The vulnerability of the emulator for testing JavaScript code on the Node.js software platform, which allows attackers to carry out XSS attacks.
The vulnerability of the emulator used to test JavaScript code on the Node.js software platform exists because measures to protect the structure of web pages have not been taken. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
The vulnerability in the web interface of BMC IPMI Supermicro X11 servers relates to the lack of protective measures for the website structure, allowing attackers to execute arbitrary code.
The vulnerability of the web interface of BMC IPMI Supermicro X11 series servers exists due to the lack of protective measures for the web page structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Markdown component of the WYSIWYG editor Froala Editor, which allows a hacker to execute arbitrary code.
The vulnerability of the Markdown component of the WYSIWYG editor Froala Editor exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability in the data_sources.php script of the Cacti network monitoring software allows a hacker to perform cross-site scripting attacks.
The vulnerability in the datasources.php script of the Cacti network monitoring software exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...