Lucene search
+L

102 matches found

Cvelist
Cvelist
added 2022/12/06 12:0 a.m.35 views

CVE-2022-40603

A cross-site scripting XSS vulnerability in the CGI program of Zyxel ZyWALL/USG series firmware versions 4.30 through 4.72, VPN series firmware versions 4.30 through 5.31, USG FLEX series firmware versions 4.50 through 5.31, and ATP series firmware versions 4.32 through 5.31, which could allow an...

4.7CVSS6.1AI score0.00359EPSS
Exploits0References1
NVD
NVD
added 2022/11/15 9:15 p.m.33 views

CVE-2022-20834

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...

4.8CVSS0.00446EPSS
Exploits0References1
Prion
Prion
added 2022/11/15 9:15 p.m.26 views

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...

4.3CVSS5AI score0.00446EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/11/15 9:15 p.m.21 views

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...

4.3CVSS5AI score0.00446EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/11/15 9:15 p.m.19 views

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...

4.3CVSS5AI score0.00446EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/11/09 12:0 a.m.5 views

PT-2022-5691 · Cisco · Cisco Firepower Management Center

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Management Center FMC Software affected versions not specified Description: The issue is related to insufficient validation of user-supplied input by the web-based management interface, allowing an authenticated, remote attack...

4.9CVSS6AI score0.00446EPSS
Exploits0References4
NVD
NVD
added 2022/11/04 6:15 p.m.18 views

CVE-2022-20963

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. This vulnerability is due to...

5.4CVSS0.00429EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/07/21 4:5 a.m.19 views

CVE-2022-20916 Cisco IoT Control Center Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco IoT Control Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly...

6.1CVSS6.1AI score0.00567EPSS
Exploits0References1
CVE
CVE
added 2022/05/27 2:5 p.m.185 views

CVE-2022-20667

Cisco CSPC (Common Services Platform Collector) suffers cross-site scripting (XSS) flaws in its web-based management interface due to insufficient input validation. Exploitation requires a user to click a crafted link, enabling an attacker to run arbitrary script code in the interface context or ...

6.1CVSS6AI score0.00685EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2022/05/23 12:0 a.m.62 views

Cisco Common Services Platform Collector Cross-Site Scripting Vulnerability (CNVD-2022-64197)

Cisco Common Services Platform Collector CSPC is a common services platform data collector from Cisco USA. The product analyzes network performance and identifies risks and vulnerabilities by polling basic inventory and configuration data from Cisco devices.Cisco Common Services Platform Collecto...

6.1CVSS2.4AI score0.00685EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/10 7:47 p.m.29 views

CVE-2022-30278

A vulnerability in Black Duck Hub’s embedded MadCap Flare documentation files could allow an unauthenticated remote attacker to conduct a cross-site scripting attack. The vulnerability is due to improper validation of user-supplied input to MadCap Flare's framework embedded within Black Duck Hub'...

6.5AI score0.00792EPSS
Exploits0References1
OSV
OSV
added 2022/05/10 7:47 p.m.12 views

CVE-2022-30278

A vulnerability in Black Duck Hub’s embedded MadCap Flare documentation files could allow an unauthenticated remote attacker to conduct a cross-site scripting attack. The vulnerability is due to improper validation of user-supplied input to MadCap Flare's framework embedded within Black Duck Hub'...

6.1CVSS6.5AI score0.00792EPSS
Exploits0References3
Prion
Prion
added 2022/05/03 4:15 a.m.15 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack. This vulnerability is due to improper validation of user-supplied input to the web-based management...

4.3CVSS6.2AI score0.007EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/05/03 3:16 a.m.13 views

CVE-2022-20740 Cisco Firepower Management Center Software Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack. This vulnerability is due to improper validation of user-supplied input to the web-based management...

6.1CVSS6.3AI score0.007EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/18 12:0 a.m.50 views

Cisco Security Manager Cross-Site Scripting Vulnerability

Cisco Security Manager CSM is a set of enterprise-level management applications from Cisco, which are used to configure firewall, VPN, and intrusion protection security services on Cisco networks and security devices. cross-site scripting vulnerability exists in Cisco Security Manager, which stem...

6.1CVSS3.3AI score0.00759EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/18 12:0 a.m.49 views

Cisco Security Manager Cross-Site Scripting Vulnerability (CNVD-2022-04813)

Cisco Security Manager CSM is a set of enterprise-class management applications from Cisco, which is mainly used to configure firewall, VPN and intrusion protection security services on Cisco networks and security devices.A cross-site scripting vulnerability exists in Cisco Security Manager, whic...

6.1CVSS3.4AI score0.00759EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/01/14 5:5 a.m.23 views

CVE-2022-20636 Cisco Security Manager Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the...

6.1CVSS6.4AI score0.00759EPSS
Exploits0References1
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.25 views

Cisco ASA and FTD Cross-Site Scripting (XSS) Vulnerability

Cisco Adaptive Security Appliance ASA and Firepower Threat Defense FTD contain an insufficient input validation vulnerability for user-supplied input by the web services interface. Successful exploitation could allow an attacker to perform cross-site scripting XSS in the context of the interface ...

6.1CVSS5.9AI score0.85439EPSS
In wildExploits2
Prion
Prion
added 2021/07/08 7:15 p.m.22 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Virtualized Voice Browser could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web-based management interface does not...

4.3CVSS5.9AI score0.00813EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2021/07/08 12:0 a.m.9 views

Cisco Identity Services Engine stored cross-site scripting vulnerability (CNVD-2021-50083)

Cisco Identity Services Engine ISE is a next-generation identity and access control policy platform that enables organizations to enforce compliance, enhance infrastructure security, and streamline their service operations. A stored cross-site scripting vulnerability exists in the Web management...

4.8CVSS6.1AI score0.00594EPSS
Exploits0References1
Rows per page
Query Builder