Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

OSV
OSVadded 2022/07/25 4:15 p.m.26 views

CVE-2022-35653

A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's brows...

6.1CVSS6.1AI score
Exploits0References5
Prion
Prionadded 2022/07/25 4:15 p.m.23 views

Cross site scripting

A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's brows...

5.8CVSS6.7AI score0.83646EPSS
Exploits0References5Affected Software3
Cvelist
Cvelistadded 2022/07/25 3:33 p.m.28 views

CVE-2022-35653

A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's brows...

6.5AI score0.83646EPSS
Exploits0References5
Check Point Advisories
Check Point Advisoriesadded 2020/05/21 12:0 a.m.0 views

Suspicious Defacement Traffic

Website defacement is an attack to change the visual appearance and content of a website. An attacker may use this attack to vandalize a targeted website...

2.6AI score
Exploits0
Cvelist
Cvelistadded 2020/02/28 3:7 p.m.13 views

CVE-2020-9447

There is an XSS cross-site scripting vulnerability in GwtUpload 1.0.3 in the file upload functionality. Someone can upload a file with a malicious filename, which contains JavaScript code, which would result in XSS. Cross-site scripting enables attackers to steal data, change the appearance of a...

6AI score0.00305EPSS
Exploits1References2
Rows per page
Query Builder