Lucene search
K

525 matches found

Cvelist
Cvelist
added 2025/12/18 7:53 p.m.23 views

CVE-2020-36889 Kentico Xperience <= 12.0.90 Administration Interface Stored XSS

A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to inject malicious scripts via error messages containing specially crafted object names. This allows malicious scripts to execute in users' browsers when administrators view error messages in the administration...

5.4CVSS0.00179EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/18 7:53 p.m.3 views

CVE-2020-36889 Kentico Xperience <= 12.0.90 Administration Interface Stored XSS

A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to inject malicious scripts via error messages containing specially crafted object names. This allows malicious scripts to execute in users' browsers when administrators view error messages in the administration...

5.4CVSS5.8AI score0.00179EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.4 views

PT-2025-52311

Name of the Vulnerable Software and Affected Versions Kentico Xperience affected versions not specified Description A stored cross-site scripting issue exists in Kentico Xperience. Global administrators can inject malicious payloads through the Localization application. Successful exploitation...

5.1CVSS5.9AI score0.0014EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.10 views

PT-2025-52310

Name of the Vulnerable Software and Affected Versions Kentico Xperience affected versions not specified Description A reflected cross-site scripting issue exists in Kentico Xperience. Authenticated users can inject malicious scripts into the administration interface. Exploitation allows attackers...

5.4CVSS6.2AI score0.00165EPSS
Exploits0References4
NVD
NVD
added 2025/12/16 5:16 a.m.13 views

CVE-2025-14777

A flaw was found in Keycloak. An IDOR Broken Access Control vulnerability exists in the admin API endpoints for authorization resource management, specifically in ResourceSetService and PermissionTicketService. The system checks authorization against the resourceServer client ID provided in the A...

6CVSS0.00315EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/10 9:30 a.m.6 views

EUVD-2025-202403

Keycloak Admin REST Representational State Transfer API does not properly enforce permissions...

2.7CVSS6.4AI score0.0032EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/12/10 9:4 a.m.4 views

CVE-2025-14082 Keycloak-services: keycloak admin rest api: improper access control leads to sensitive role metadata information disclosure

A flaw was found in Keycloak Admin REST Representational State Transfer API. This vulnerability allows information disclosure of sensitive role metadata via insufficient authorization checks on the /admin/realms/realm/roles endpoint...

2.7CVSS5.7AI score0.0032EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/10/31 10:7 p.m.4 views

CVE-2020-36866

Nagios XI versions prior to 5.7.3 are vulnerable to cross-site scripting XSS via the Manage Users page of the Admin interface. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...

5.4CVSS6.2AI score0.00383EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-3868

Malware in sbrugna...

4.3CVSS6.4AI score0.01094EPSS
Exploits2References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-7208

Malware in sbrugna...

9.8CVSS9.5AI score0.02387EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-0133

Malware in sbrugna...

10CVSS6.4AI score0.02185EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-8850

Malware in sbrugna...

7.5CVSS7.5AI score0.02532EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2004-1890

Malware in sbrugna...

5CVSS6.4AI score0.08671EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-7211

Malware in sbrugna...

10CVSS9.5AI score0.02431EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-6670

Malware in sbrugna...

9CVSS6.4AI score0.02098EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-3071

Malware in sbrugna...

6.5CVSS6.4AI score0.03058EPSS
Exploits0References22
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2009-0065

Malware in sbrugna...

6.8CVSS6.3AI score0.00547EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-1892

Malware in sbrugna...

5CVSS6.4AI score0.01687EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-23861

Malware in sbrugna...

7.2CVSS6.8AI score0.01398EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-4897

Malware in sbrugna...

5CVSS6.4AI score0.03511EPSS
Exploits0References9
Rows per page
Query Builder