Lucene search
K

8 matches found

OSV
OSV
added 2023/08/08 6:30 p.m.14 views

GHSA-8M9P-3926-GFFR wger Workout Manager Cross-site Scripting vulnerability

Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows a remote attacker to gain privileges via the licenseauthor field in the add-ingredient function in the templates/ingredients/view.html, models/ingredients.py, and views/ingredients.py components...

5.4CVSS5.4AI score0.00467EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2023/08/08 6:30 p.m.23 views

wger Workout Manager Cross-site Scripting vulnerability

Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows a remote attacker to gain privileges via the licenseauthor field in the add-ingredient function in the templates/ingredients/view.html, models/ingredients.py, and views/ingredients.py components...

5.4CVSS6.8AI score0.00467EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2023/08/08 4:15 p.m.3 views

CVE-2023-38758

Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows a remote attacker to gain privileges via the licenseauthor field in the add-ingredient function in the templates/ingredients/view.html, models/ingredients.py, and views/ingredients.py components...

5.4CVSS5.8AI score0.00467EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/08/08 4:15 p.m.3 views

CVE-2023-38758

Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows a remote attacker to gain privileges via the licenseauthor field in the add-ingredient function in the templates/ingredients/view.html, models/ingredients.py, and views/ingredients.py components...

5.4CVSS5.8AI score0.00467EPSS
Exploits1References3
NVD
NVD
added 2023/08/08 4:15 p.m.22 views

CVE-2023-38758

Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows a remote attacker to gain privileges via the licenseauthor field in the add-ingredient function in the templates/ingredients/view.html, models/ingredients.py, and views/ingredients.py components...

5.4CVSS5.5AI score0.00467EPSS
Exploits1References2
PyPA
PyPA
added 2023/08/08 4:15 p.m.5 views

PYSEC-2023-143

Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows a remote attacker to gain privileges via the licenseauthor field in the add-ingredient function in the templates/ingredients/view.html, models/ingredients.py, and views/ingredients.py components...

5.4CVSS6.9AI score0.00467EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2023/08/08 4:15 p.m.23 views

Cross site scripting

Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows a remote attacker to gain privileges via the licenseauthor field in the add-ingredient function in the templates/ingredients/view.html, models/ingredients.py, and views/ingredients.py components...

4.9CVSS5.5AI score0.00467EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/08 12:0 a.m.13 views

CVE-2023-38758

Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows a remote attacker to gain privileges via the licenseauthor field in the add-ingredient function in the templates/ingredients/view.html, models/ingredients.py, and views/ingredients.py components...

6.7AI score0.00467EPSS
Exploits1References2
Rows per page
Query Builder