Lucene search
K

411 matches found

CNVD
CNVD
added 2018/03/12 12:0 a.m.4 views

Cisco Videoscape AnyRes Live Cross-Site Scripting Vulnerability

Cisco Videoscape AnyRes Live is a multi-format video encoder released by Cisco USA. A cross-site scripting vulnerability exists in the web-based administration interface of Cisco Videoscape AnyRes Live, which arises from the program's failure to adequately validate user-submitted input. A remote...

5.4CVSS6.6AI score0.00678EPSS
Exploits0References1
CNVD
CNVD
added 2018/03/07 12:0 a.m.3 views

Piwigo cross-site scripting vulnerability (CNVD-2018-06554)

Piwigo is a web-based photo album software from the Piwigo team. The software supports photo publishing, management, multiple browsing options categories, tags, time and more. A cross-site scripting vulnerability exists in the admin panel in Piwigo version 2.9.3. A remote attacker can exploit thi...

5.4CVSS6.2AI score0.00556EPSS
Exploits1References1
CNVD
CNVD
added 2018/02/26 12:0 a.m.8 views

Cisco Data Center Analytics Framework Cross-Site Scripting Vulnerability (CNVD-2018-05306)

Cisco Data Center Analytics Framework DCAF application is a set of data center analytics frameworks from the U.S. company Cisco Cisco. A cross-site scripting vulnerability exists in the web-based management interface of the Cisco DCAF application, which stems from the program's failure to...

6.1CVSS6.6AI score0.00885EPSS
Exploits0References1
CNVD
CNVD
added 2018/02/23 12:0 a.m.7 views

Cisco Prime Service Catalog Cross-Site Scripting Vulnerability (CNVD-2018-05348)

Cisco Prime Service Catalog PSC is a service catalog solution from Cisco USA that provides all IT services through a single portal. The solution supports automated ordering of a unified service catalog for computing, networking, storage, and other data center resources. A cross-site scripting...

6.1CVSS6.7AI score0.01244EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2018/02/22 12:29 a.m.5 views

CVE-2018-0145

A vulnerability in the web-based management interface of the Cisco Data Center Analytics Framework application could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the interface of an affected system. The vulnerability is due to...

6.1CVSS5.8AI score0.00885EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2018/01/25 9:25 a.m.22 views

CVE-2018-6053

Inappropriate implementation in New Tab Page in Google Chrome prior to 64.0.3282.119 allowed a local attacker to view website thumbnail images after clearing browser data via a crafted HTML page...

4.3CVSS2.6AI score0.00755EPSS
Exploits0References2
OSV
OSV
added 2018/01/18 6:29 a.m.5 views

CVE-2017-12308

A vulnerability in the web framework of Cisco Small Business Managed Switches software could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack against a user of the web interface of an affected system. The vulnerability is due to insufficient input validation ...

6.1CVSS6.1AI score0.00833EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/01/10 8:56 p.m.5 views

flash-plugin: unintended reset of global settings preference file vulnerability (APSB17-42)

A regression affecting Adobe Flash Player version 27.0.0.187 and earlier versions causes the unintended reset of the global settings preference file when a user clears browser data...

6.5CVSS7.3AI score0.03642EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2017/12/21 4:29 a.m.2 views

CVE-2017-17825

The Batch Manager component of Piwigo 2.9.2 is vulnerable to Persistent Cross Site Scripting via tags- array parameters in an admin.php?page=batchmanager&mode=unit request. An attacker can exploit this to hijack a client's browser along with the data stored in it...

4.8CVSS8AI score0.0054EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2017/12/13 9:29 p.m.33 views

CVE-2017-11305

A regression affecting Adobe Flash Player version 27.0.0.187 and earlier versions causes the unintended reset of the global settings preference file when a user clears browser data...

6.5CVSS6.8AI score0.03642EPSS
Exploits0References3
Prion
Prion
added 2017/12/13 9:29 p.m.20 views

Information disclosure

A regression affecting Adobe Flash Player version 27.0.0.187 and earlier versions causes the unintended reset of the global settings preference file when a user clears browser data...

4.3CVSS6.5AI score0.03642EPSS
Exploits0References4Affected Software5
OSV
OSV
added 2017/12/13 9:29 p.m.2 views

CVE-2017-11305

A regression affecting Adobe Flash Player version 27.0.0.187 and earlier versions causes the unintended reset of the global settings preference file when a user clears browser data...

6.5CVSS5.8AI score0.03642EPSS
Exploits0References4
OSV
OSV
added 2017/12/13 9:29 p.m.2 views

UBUNTU-CVE-2017-11305

A regression affecting Adobe Flash Player version 27.0.0.187 and earlier versions causes the unintended reset of the global settings preference file when a user clears browser data...

7.5CVSS6.7AI score0.03642EPSS
Exploits0References4
Cvelist
Cvelist
added 2017/12/13 9:0 p.m.33 views

CVE-2017-11305

A regression affecting Adobe Flash Player version 27.0.0.187 and earlier versions causes the unintended reset of the global settings preference file when a user clears browser data...

6.3AI score0.03642EPSS
Exploits0References4
CVE
CVE
added 2017/12/13 9:0 p.m.94 views

CVE-2017-11305

The CVE-2017-11305 entry refers to a regression in Adobe Flash Player up to version 27.0.0.187 that causes the unintended reset of the global settings preference file when a user clears browser data. Connected sources confirm this regression affecting Flash Player and document affected releases (...

6.5CVSS6.4AI score0.03642EPSS
Exploits0References4Affected Software1
Kaspersky
Kaspersky
added 2017/12/12 12:0 a.m.58 views

KLA11157 A regression in Adobe Flash Player

A regression in Adobe Flash Player can lead to the unintended reset of the global settings preference file when a user clears browser data. Technical details To update Adobe Flash Player ActiveX detected as Flash.ocx on Windows 8 and higher, install latest updates from Control Panel Original...

6.5CVSS6AI score0.03642EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2017/12/12 12:0 a.m.5 views

PT-2017-11908 · Adobe +2 · Flash Player +2

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions prior to 27.0.0.187 Description: A regression in Adobe Flash Player causes the unintended reset of the global settings preference file when a user clears browser data. This issue allows attackers to affect the...

10CVSS8AI score0.89618EPSS
Exploits47References141
CNVD
CNVD
added 2017/12/04 12:0 a.m.11 views

Cisco WebEx Meeting Center Cross-Site Scripting Vulnerability (CNVD-2017-36128)

Cisco WebEx Meeting Center is a set of WebEx meeting solutions in the United States Cisco Cisco company's network of online meeting products. The product invites others to join the meeting via e-mail or instant messaging IM, and supports online product demonstrations, information sharing, and mor...

6.1CVSS6.6AI score0.0122EPSS
Exploits0References1
Securelist
Securelist
added 2017/11/23 10:0 a.m.44 views

Android commercial spyware

There's certainly no shortage of commercial spying apps for Android, with most positioned as parental control tools. In reality, however, these apps barely differ from spyware, with the exception perhaps of the installation method. There's no need to even resort to Tor Browser or other darknet...

7.1AI score
Exploits0
CNVD
CNVD
added 2017/11/21 12:0 a.m.4 views

Cisco Registered Envelope Service Cross-Site Scripting Vulnerability

Cisco Registered Envelope Service is a set of mail service solutions from Cisco USA. The product includes read receipts for mail, mail recycling, mail forwarding and reply functions, and provides smartphone support. A cross-site scripting vulnerability exists in Cisco Registered Envelope Service,...

6.1CVSS6.6AI score0.00868EPSS
Exploits0References1
Rows per page
Query Builder