CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2022/11/15 3:15 p.m.•2 views

CVE-2022-42001

Cross-site Scripting XSS vulnerability in BlueSpiceBookshelf extension of BlueSpice allows user with regular account and edit permissions to inject arbitrary HTML into the book navigation...

5.4CVSS5.9AI score0.00298EPSS

Exploits0References1

CNNVD•added 2022/11/15 12:0 a.m.•1 views

BlueSpice 跨站脚本漏洞

BlueSpice is free Wiki software from BlueSpice based on the MediaWiki engine. A cross-site scripting vulnerability exists in BlueSpice's BlueSpiceBookshelf extension. An attacker could exploit the vulnerability to inject arbitrary HTML into the book navigation...

5.4CVSS5.7AI score0.00298EPSS

Exploits0References3

Positive Technologies•added 2022/11/15 12:0 a.m.•3 views

PT-2022-26206 · Unknown +1 · Bluespicebookshelf +1

Name of the Vulnerable Software and Affected Versions: BlueSpice affected versions not specified Description: The issue allows a user with a regular account and edit permissions to inject arbitrary HTML into the book navigation, which is a result of a Cross-site Scripting XSS vulnerability in the...

5.4CVSS5.2AI score0.00298EPSS

Exploits0References3

NVD•added 2014/10/09 10:55 a.m.•15 views

CVE-2014-8068

Adobe Digital Editions DE 4 does not use encryption for transmission of data to adelogs.adobe.com, which allows remote attackers to obtain sensitive information by sniffing the network, as demonstrated by book-navigation information...

5CVSS6.1AI score0.00398EPSS

Exploits0References5