Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 2026/01/02 12:0 a.m.4 views

PT-2026-1037

Name of the Vulnerable Software and Affected Versions Yonyou KSOA version 9.0 Description A flaw exists in Yonyou KSOA 9.0 related to the HTTP GET Parameter Handler. Specifically, the manipulation of the ID parameter in the /worksheet/agent worksadd.jsp file can lead to SQL injection. This issue ...

7.5CVSS6.8AI score0.00384EPSS
Exploits1References13
CNNVD
CNNVDadded 2024/12/20 12:0 a.m.2 views

JetBrains TeamCity 跨站脚本漏洞

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. A cross-site scripting vulnerability exists in...

5.4CVSS6.1AI score0.00752EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2023/06/19 10:15 a.m.4 views

Jenkins: Information disclosure through error stack traces related to agents

A flaw was found in Jenkins. The affected version of Jenkins prints an error stack trace on agent-related pages when agent connections are broken. This stack trace may contain information about Jenkins configuration that is otherwise inaccessible to attackers...

5.3CVSS7.3AI score0.00724EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2022/04/21 8:15 p.m.2 views

CVE-2022-28411

Simple Real Estate Portal System v1.0 was discovered to contain a SQL injection vulnerability via /reps/admin/?page=agents/manageagent...

9.8CVSS5.9AI score0.01461EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2021/03/23 4:57 p.m.4 views

pki-core: Reflected XSS in 'path length' constraint field in CA's Agent page

A Reflected Cross Site Scripting flaw was found in the pki-ca module from the pki-core server due to the CA Agent Service not properly sanitizing the certificate request page. An attacker could inject a specially crafted value that will be executed on the victim's browser...

4.7CVSS6.4AI score0.00661EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2021/03/16 1:53 p.m.2 views

pki-core/pki-kra: Reflected XSS in recoveryID search field at KRA's DRM agent page in authorize recovery tab

It was found that the Key Recovery Authority KRA Agent Service did not properly sanitize recovery request search page, enabling a Reflected Cross Site Scripting XSS vulnerability. An attacker could trick an authenticated victim into executing specially crafted Javascript code...

6.1CVSS6.4AI score0.00919EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2012/08/13 12:0 a.m.3 views

PT-2012-4167 · Red Hat +1 · Dogtag Certificate System +3

Name of the Vulnerable Software and Affected Versions: Red Hat Certificate System versions prior to 8.1.1 Dogtag Certificate System affected versions not specified Description: The issue concerns multiple cross-site scripting XSS vulnerabilities. These vulnerabilities allow remote attackers to...

4.3CVSS6.4AI score0.01373EPSS
Exploits0References17
RedHat Linux
RedHat Linuxadded 2012/07/19 3:49 p.m.2 views

System: multiple XSS flaws

Multiple cross-site scripting flaws were discovered in the Red Hat Certificate System Agent and End Entity pages. An attacker could use these flaws to perform a cross-site scripting XSS attack against victims using the Certificate System's web interface...

4.3CVSS6.5AI score0.01373EPSS
Exploits0References4
Rows per page
Query Builder