Lucene search
K

415 matches found

AlpineLinux
AlpineLinux
added 2024/04/22 10:24 p.m.3 views

CVE-2024-32657

Hydra is a Continuous Integration service for Nix based projects. Attackers can execute arbitrary code in the browser context of Hydra and execute authenticated HTTP requests. The abused feature allows Nix builds to specify files that Hydra serves to clients. One use of this functionality is...

5.4CVSS7.2AI score0.00463EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/04/10 5:8 p.m.17 views

CVE-2024-1602 Stored XSS leading to RCE in parisneo/lollms-webui

parisneo/lollms-webui is vulnerable to stored Cross-Site Scripting XSS that leads to Remote Code Execution RCE. The vulnerability arises due to inadequate sanitization and validation of model output data, allowing an attacker to inject malicious JavaScript code. This code can be executed within t...

8.8CVSS8.3AI score0.00724EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/03/18 5:54 p.m.22 views

CVE-2024-26104 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)

Adobe Experience Manager versions 6.5.19 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browse...

5.4CVSS5.3AI score0.00427EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/18 12:0 a.m.4 views

Adobe Experience Manager 跨站脚本漏洞

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.6AI score0.0054EPSS
Exploits0References2
Veracode
Veracode
added 2024/03/01 8:4 a.m.12 views

Cross Site Scripting

concrete5/concrete5 is vulnerable to cross-site scripting. The vulnerability is due to inadequate input validation on user-supplied data through the URL path /dashboard/system/basics/name, allowing malicious scripts to be stored and executed in the context of the user's browser when the affected...

4.8CVSS6.1AI score0.0055EPSS
Exploits0References4Affected Software1
NCSC
NCSC
added 2024/02/22 12:0 a.m.6 views

Vulnerabilities fixed in Joomla!

Vulnerabilities have been fixed in Joomla! CMS. A malicious person can exploit the vulnerabilities to bypass a security measure bypass or perform a Cross-Site-Scripting XSS attack. Such an attack can lead to execution of arbitrary code in the victim's browser, or access to sensitive data in the...

6.5CVSS7AI score0.48839EPSS
Exploits1
Prion
Prion
added 2023/12/20 2:15 p.m.14 views

Cross site scripting

Adobe Experience Manager versions 6.5.18 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

4.9CVSS5.9AI score0.00379EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/20 2:2 p.m.25 views

CVE-2023-51462 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)

Adobe Experience Manager versions 6.5.18 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

5.4CVSS5.3AI score0.00379EPSS
Exploits0References1
OSV
OSV
added 2023/12/15 11:15 a.m.6 views

CVE-2023-48599

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

5.4CVSS5.7AI score0.00597EPSS
Exploits0References1
NVD
NVD
added 2023/12/15 11:15 a.m.27 views

CVE-2023-48587

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

5.4CVSS0.00597EPSS
Exploits0References1
NVD
NVD
added 2023/12/15 11:15 a.m.27 views

CVE-2023-48495

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

5.4CVSS0.00562EPSS
Exploits0References1
OSV
OSV
added 2023/12/15 11:15 a.m.4 views

CVE-2023-48474

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

5.4CVSS5.7AI score0.00597EPSS
Exploits0References1
NVD
NVD
added 2023/12/15 11:15 a.m.23 views

CVE-2023-48473

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

5.4CVSS0.00597EPSS
Exploits0References1
Prion
Prion
added 2023/12/15 11:15 a.m.23 views

Cross site scripting

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

4.9CVSS6.5AI score0.00597EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/12/15 11:15 a.m.18 views

Cross site scripting

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

4.9CVSS6.5AI score0.00562EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2023/12/15 11:15 a.m.19 views

Cross site scripting

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

4.9CVSS6.5AI score0.00562EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2023/12/15 11:15 a.m.19 views

Cross site scripting

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

4.9CVSS6.5AI score0.00597EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2023/12/15 11:15 a.m.16 views

Cross site scripting

Adobe Experience Manager versions 6.5.18 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

4.9CVSS5.9AI score0.00562EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2023/12/15 11:15 a.m.23 views

Cross site scripting

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

4.9CVSS6.5AI score0.00597EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/12/15 11:15 a.m.18 views

Cross site scripting

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...

4.9CVSS6.5AI score0.00597EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder