CVE-2023-31246

Incorrect default permissions in some IntelR SDP Tool software before version 1.4 build 5 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-2003

Embedded malicious code vulnerability in Vision1210, in the build 5 of operating system version 4.3, which could allow a remote attacker to store base64-encoded malicious code in the device's data tables via the PCOM protocol, which can then be retrieved by a client and executed on the device...

CVE-2018-15512

Cross-site scripting XSS vulnerability in the 'Authorisation Service' feature of totemomail 6.0.0 build 570 allows remote attackers to inject arbitrary web script or HTML...

ZOHO ManageEngine ADSelfService Plus Cross-Site Scripting Vulnerability (CNVD-2019-03297)

ZOHO ManageEngine ADSelfService Plus is a Web-based end-user password management software from ZOHO. A cross-site scripting vulnerability exists in the Staff Search feature in ZOHO ManageEngine ADSelfService Plus prior to version 5.7 build 5702, which can be exploited by remote attackers to injec...

Infovista VistaPortal SE Cross-Site Scripting Vulnerability (CNVD-2019-07217)

Infovista VistaPortal SE is a Web-based application from Infovista USA. A cross-site scripting vulnerability exists in the '/VPortal/mgtconsole/categorytree/ChooseCategory.jsp' page in Infovista VistaPortal SE version 5.1 build 51029, which can be exploited by a remote An attacker can inject...