76 matches found
The vulnerability of the “Manage Catalog Items” and “Cross-Catalog Search” components of the SAP S/4HANA software platform allows a hacker to redirect users to any arbitrary URL address.
The vulnerability of the “Manage Catalog Items” and “Cross-Catalog Search” components of the SAP S/4HANA software platform is related to the redirection of URLs to an unreliable website. Exploiting this vulnerability could allow a malicious actor to redirect users to any given URL address...
GHSA-MP9R-RH95-F8F8 Magento 2 Community Edition RCE Vulnerability
Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...
Magento 2 Community Edition RCE Vulnerability
Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...
CVE-2019-7885
Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...
CVE-2019-7885
Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...
Input validation
Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...
CVE-2019-7885
Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...
kestrelinstruments.com XSS vulnerability
Open Bug Bounty ID: OBB-699768 Description| Value ---|--- Affected Website:| kestrelinstruments.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
steren.com.mx XSS vulnerability
Open Bug Bounty ID: OBB-679153 Description| Value ---|--- Affected Website:| steren.com.mx Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
bestbassgear.com XSS vulnerability
Open Bug Bounty ID: OBB-676684 Description| Value ---|--- Affected Website:| bestbassgear.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
ludilabel.fr XSS vulnerability
Open Bug Bounty ID: OBB-674724 Description| Value ---|--- Affected Website:| ludilabel.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
monzee.jp XSS vulnerability
Open Bug Bounty ID: OBB-674280 Description| Value ---|--- Affected Website:| monzee.jp Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
jailupourelle.com XSS vulnerability
Open Bug Bounty ID: OBB-672945 Description| Value ---|--- Affected Website:| jailupourelle.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
artdeco.com XSS vulnerability
Open Bug Bounty ID: OBB-671192 Description| Value ---|--- Affected Website:| artdeco.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
jollyes.co.uk XSS vulnerability
Open Bug Bounty ID: OBB-671074 Description| Value ---|--- Affected Website:| jollyes.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
meerson.com XSS vulnerability
Open Bug Bounty ID: OBB-670268 Description| Value ---|--- Affected Website:| meerson.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
maracus.com XSS vulnerability
Open Bug Bounty ID: OBB-667585 Description| Value ---|--- Affected Website:| maracus.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
sendflowers.hk XSS vulnerability
Open Bug Bounty ID: OBB-665711 Description| Value ---|--- Affected Website:| sendflowers.hk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
kentbrushes.com XSS vulnerability
Open Bug Bounty ID: OBB-656348 Description| Value ---|--- Affected Website:| kentbrushes.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
efxkits.com XSS vulnerability
Open Bug Bounty ID: OBB-656296 Description| Value ---|--- Affected Website:| efxkits.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...