Lucene search
K

4 matches found

NVD
NVD
added 2023/07/13 11:15 p.m.31 views

CVE-2023-37272

JS7 is an Open Source Job Scheduler. Users specify file names when uploading files holding user-generated documentation for JOC Cockpit. Specifically crafted file names allow an XSS attack to inject code that is executed with the browser. Risk of the vulnerability is considered high for branch 1....

6.3CVSS0.0034EPSS
Exploits0References2
OSV
OSV
added 2023/07/13 10:28 p.m.26 views

CVE-2023-37272 XSS vulnerability in JOC Cockpit branch 1.13

JS7 is an Open Source Job Scheduler. Users specify file names when uploading files holding user-generated documentation for JOC Cockpit. Specifically crafted file names allow an XSS attack to inject code that is executed with the browser. Risk of the vulnerability is considered high for branch 1....

6.3CVSS5.4AI score0.0034EPSS
Exploits0References4
NVD
NVD
added 2022/06/02 2:15 p.m.11 views

CVE-2022-31004

CVEProject/cve-services is an open source project used to operate the CVE services API. A conditional in 'data.js' has potential for production secrets to be written to disk. The affected method writes the generated randomKey to disk if the environment is not development. If this method were call...

7.5CVSS0.00916EPSS
Exploits1References2
Fedora
Fedora
added 2018/07/11 8:24 p.m.67 views

[SECURITY] Fedora 28 Update: botan2-2.7.0-1.fc28

Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...

5.9CVSS1.5AI score0.00887EPSS
Exploits2
Rows per page
Query Builder