Lucene search
K

2049 matches found

NVD
NVD
added 2023/12/26 8:15 a.m.12 views

CVE-2023-45737

Stored cross-site scripting vulnerability exists in the App Settings /admin/app page and the Markdown Settings /admin/markdown page of GROWI versions prior to v3.5.0. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the site using...

5.4CVSS0.00303EPSS
Exploits0References2
OSV
OSV
added 2023/12/26 8:15 a.m.17 views

CVE-2023-45737

Stored cross-site scripting vulnerability exists in the App Settings /admin/app page and the Markdown Settings /admin/markdown page of GROWI versions prior to v3.5.0. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the site using...

5.4CVSS6AI score
Exploits0References2
Prion
Prion
added 2023/12/26 8:15 a.m.17 views

Cross site scripting

Stored cross-site scripting vulnerability exists in the event handlers of the pre tags in GROWI versions prior to v6.0.0. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the site using the product...

4.9CVSS6.2AI score0.00303EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/12/26 8:15 a.m.14 views

Cross site scripting

Stored cross-site scripting vulnerability when processing the MathJax exists in GROWI versions prior to v6.0.0. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the site using the product...

4.9CVSS6.2AI score0.00303EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/12/26 8:15 a.m.16 views

Cross site scripting

Stored cross-site scripting vulnerability which is exploiting a behavior of the XSS Filter exists in GROWI versions prior to v6.0.0. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the site using the product...

4.9CVSS5.5AI score0.0034EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/26 7:21 a.m.4 views

CVE-2023-50175

Stored cross-site scripting vulnerability exists in the App Settings /admin/app page, the Markdown Settings /admin/markdown page, and the Customize /admin/customize page of GROWI versions prior to v6.0.0. If this vulnerability is exploited, an arbitrary script may be executed on the web browser o...

6.2AI score0.00303EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/12/22 12:0 a.m.3 views

thirty bees Cross-Site Scripting Vulnerability

thirty bees is a mature e-commerce solution by thirty bees open source. A cross-site scripting vulnerability exists in versions prior to thirty bees 1.5.0 that stems from a security issue in the component admin/AdminRequestSqlController.php that allows an attacker to execute arbitrary web script ...

5.4CVSS6.1AI score0.00375EPSS
Exploits0References4
CNVD
CNVD
added 2023/12/22 12:0 a.m.7 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2023-10111056)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7.2AI score0.00379EPSS
Exploits0References1
OSV
OSV
added 2023/12/20 2:44 p.m.3 views

SUSE-SU-2023:4932-1 Security update for libreoffice

This update for libreoffice fixes the following issues: - CVE-2023-6186: Fixed link targets allow arbitrary script execution bsc1217578. - CVE-2023-6185: Fixed Improper input validation enabling arbitrary Gstreamer pipeline injection bsc1217577...

8.8CVSS8.9AI score0.01017EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/12/20 12:0 a.m.3 views

Adobe Experience Manager 跨站脚本漏洞

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.7AI score0.00379EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/12/19 12:0 a.m.6 views

The vulnerability of microprogrammed network devices such as ZyXEL USG, USG FLEX, ATP, and VPN lies in the lack of protective measures for the website structure. This allows attackers to execute arbitrary scripts on the vulnerable device.

The vulnerability of the microprogrammed network device software of ZyXEL USG, USG FLEX, ATP, and VPN relates to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary scripts on the vulnerable device...

9CVSS8.2AI score0.01508EPSS
Exploits0References2Affected Software19
BDU FSTEC
BDU FSTEC
added 2023/12/19 12:0 a.m.5 views

The vulnerability of the microprogrammed network device software of ZyXEL USG, USG FLEX, USG20(W)-VPN, and VPN lies in the lack of protective measures for the website structure. This allows attackers to execute arbitrary scripts on the vulnerable device.

The vulnerability of the microprogrammed network device software of ZyXEL USG, USG FLEX, USG20W-VPN, and VPN is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary scripts on the vulnerable device...

9CVSS5.9AI score0.00344EPSS
Exploits0References2Affected Software19
CNVD
CNVD
added 2023/12/15 12:0 a.m.4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-04935)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7AI score0.00597EPSS
Exploits0References1
CNVD
CNVD
added 2023/12/15 12:0 a.m.11 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-0321972)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7.2AI score0.00562EPSS
Exploits0References1
CNVD
CNVD
added 2023/12/15 12:0 a.m.8 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-0321578)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7.2AI score0.00597EPSS
Exploits0References1
CNVD
CNVD
added 2023/12/15 12:0 a.m.4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-0321480)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7.2AI score0.00562EPSS
Exploits0References1
CNVD
CNVD
added 2023/12/15 12:0 a.m.7 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-0298499)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7AI score0.00597EPSS
Exploits0References1
CNVD
CNVD
added 2023/12/15 12:0 a.m.4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-0269295)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7.2AI score0.00597EPSS
Exploits0References1
CNVD
CNVD
added 2023/12/15 12:0 a.m.7 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2023-10147712)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7.2AI score0.00597EPSS
Exploits0References1
CNVD
CNVD
added 2023/12/15 12:0 a.m.6 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2023-10147318)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7.2AI score0.00597EPSS
Exploits0References1
Rows per page
Query Builder