Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/06/20 12:0 a.m.19 views

PT-2026-51158

Name of the Vulnerable Software and Affected Versions Capgo versions prior to 12.128.2 Description An open redirect issue exists in the 'stripe portal' and 'stripe checkout' endpoints. These endpoints accept unvalidated callbackUrl, successUrl, and cancelUrl parameters. Authenticated attackers ca...

4.8CVSS5.9AI score0.00152EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 4:43 a.m.4 views

SUSE CVE-2017-11163

Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable...

5.4CVSS8.2AI score0.01277EPSS
Exploits1References4
OSV
OSV
added 2017/08/01 5:29 a.m.1 views

DEBIAN-CVE-2017-12066

Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti before 1.1.16 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable. NOTE: this vulnerability exists because of an incomplete fi...

5.4CVSS7.3AI score0.01417EPSS
Exploits0References1
OSV
OSV
added 2017/07/10 6:29 p.m.1 views

DEBIAN-CVE-2017-11163

Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable...

5.4CVSS5.4AI score0.01277EPSS
Exploits1References1
Rows per page
Query Builder