Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2022/05/24 5:19 p.m.3 views

GHSA-Q87G-7MP5-765Q Improper Neutralization of Input During Web Page Generation in Jenkins Script Security Plugin

Jenkins Script Security Plugin 1.72 and earlier does not correctly escape pending or approved classpath entries on the In-process Script Approval page, resulting in a stored cross-site scripting vulnerability...

5.4CVSS5.8AI score0.00754EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2020/06/03 12:0 a.m.4 views

PT-2020-15404 · Jenkins · Jenkins Script Security Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Script Security Plugin versions 1.72 and earlier Description: The issue is related to a stored cross-site scripting vulnerability. It occurs because the Jenkins Script Security Plugin does not correctly escape pending or approved...

5.4CVSS5.1AI score0.00754EPSS
Exploits0References7
Veracode
Veracodeadded 2017/07/27 9:55 p.m.19 views

Cross-site Scripting (XSS)

Moodle is vulnerable to cross-site scripting XSS attacks. A malicious user can inject and execute arbitrary web script through the course summary field on the course request pending approval page...

3.5CVSS5.6AI score0.01459EPSS
Exploits0References4Affected Software1
Openbugbounty
Openbugbountyadded 2017/06/29 1:58 p.m.11 views

ib-lenhardt.com XSS vulnerability

Vulnerable URL: https://www.ib-lenhardt.com/en/type-approval.php?continent=1"...

6.9AI score
Exploits0
Microsoft KB
Microsoft KBadded 2016/07/12 7:0 a.m.93 views

MS16-088: Description of the security update for SharePoint Server 2016: July 12, 2016

MS16-088: Description of the security update for SharePoint Server 2016: July 12, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see...

9.3CVSS8.2AI score0.26291EPSS
Exploits0
CNVD
CNVDadded 2015/02/21 12:0 a.m.5 views

Moodle Cross-Site Scripting Vulnerability

Moodle is an open source web-based teaching and learning application. A cross-site scripting vulnerability exists in the Moodle pending approval page, which allows remote attackers to construct malicious URIs and trick users into parsing them, which can be used to obtain sensitive cookies, hijack...

3.5CVSS6.3AI score0.01459EPSS
Exploits0References1
exploitpack
exploitpackadded 2010/02/23 12:0 a.m.26 views

Tinypug 0.9.5 - Cross-Site Request Forgery (Password Change)

Tinypug 0.9.5 - Cross-Site Request Forgery Password Change www.BugReport.ir AmnPardaz Security Research Team Title: Tinypug Multiple Vulnerabilities Vendor: http://platformassociates.com/ project hosted at http://code.google.com/p/tinypug/ Vulnerable Version: 0.9.5 and prior versions Exploitation...

0.8AI score
Exploits0
Rows per page
Query Builder