Lucene search
K

76 matches found

BDU FSTEC
BDU FSTEC
added 2023/09/12 12:0 a.m.7 views

The vulnerability of the “Manage Catalog Items” and “Cross-Catalog Search” components of the SAP S/4HANA software platform allows a hacker to redirect users to any arbitrary URL address.

The vulnerability of the “Manage Catalog Items” and “Cross-Catalog Search” components of the SAP S/4HANA software platform is related to the redirection of URLs to an unreliable website. Exploiting this vulnerability could allow a malicious actor to redirect users to any given URL address...

6.4CVSS6.3AI score0.00332EPSS
Exploits0References5
OSV
OSV
added 2022/05/24 4:52 p.m.14 views

GHSA-MP9R-RH95-F8F8 Magento 2 Community Edition RCE Vulnerability

Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...

8.8CVSS8.8AI score0.01954EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/05/24 4:52 p.m.17 views

Magento 2 Community Edition RCE Vulnerability

Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...

8.8CVSS7.7AI score0.01954EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2019/08/02 10:15 p.m.13 views

CVE-2019-7885

Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...

8.8CVSS8.8AI score0.01954EPSS
Exploits0References1
OSV
OSV
added 2019/08/02 10:15 p.m.12 views

CVE-2019-7885

Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...

8.8CVSS7.5AI score
Exploits0References1
Prion
Prion
added 2019/08/02 10:15 p.m.15 views

Input validation

Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...

6.5CVSS8.8AI score0.01954EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/02 9:20 p.m.23 views

CVE-2019-7885

Insufficient input validation in the config builder of the Elastic search module could lead to remote code execution in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This vulnerability could be abused by an authenticated user with the ability to configure th...

8.9AI score0.01954EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2018/11/19 10:36 a.m.13 views

kestrelinstruments.com XSS vulnerability

Open Bug Bounty ID: OBB-699768 Description| Value ---|--- Affected Website:| kestrelinstruments.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/09/23 5:7 a.m.54 views

steren.com.mx XSS vulnerability

Open Bug Bounty ID: OBB-679153 Description| Value ---|--- Affected Website:| steren.com.mx Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/09/14 10:51 a.m.14 views

bestbassgear.com XSS vulnerability

Open Bug Bounty ID: OBB-676684 Description| Value ---|--- Affected Website:| bestbassgear.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/09/09 2:5 p.m.50 views

ludilabel.fr XSS vulnerability

Open Bug Bounty ID: OBB-674724 Description| Value ---|--- Affected Website:| ludilabel.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/09/08 9:14 a.m.10 views

monzee.jp XSS vulnerability

Open Bug Bounty ID: OBB-674280 Description| Value ---|--- Affected Website:| monzee.jp Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/09/04 10:34 a.m.10 views

jailupourelle.com XSS vulnerability

Open Bug Bounty ID: OBB-672945 Description| Value ---|--- Affected Website:| jailupourelle.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/08/30 10:18 a.m.11 views

artdeco.com XSS vulnerability

Open Bug Bounty ID: OBB-671192 Description| Value ---|--- Affected Website:| artdeco.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/08/30 5:35 a.m.8 views

jollyes.co.uk XSS vulnerability

Open Bug Bounty ID: OBB-671074 Description| Value ---|--- Affected Website:| jollyes.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/08/28 10:53 a.m.8 views

meerson.com XSS vulnerability

Open Bug Bounty ID: OBB-670268 Description| Value ---|--- Affected Website:| meerson.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/08/21 11:7 a.m.13 views

maracus.com XSS vulnerability

Open Bug Bounty ID: OBB-667585 Description| Value ---|--- Affected Website:| maracus.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/08/17 2:18 p.m.13 views

sendflowers.hk XSS vulnerability

Open Bug Bounty ID: OBB-665711 Description| Value ---|--- Affected Website:| sendflowers.hk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/07/30 2:48 p.m.11 views

kentbrushes.com XSS vulnerability

Open Bug Bounty ID: OBB-656348 Description| Value ---|--- Affected Website:| kentbrushes.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/07/30 2:23 p.m.10 views

efxkits.com XSS vulnerability

Open Bug Bounty ID: OBB-656296 Description| Value ---|--- Affected Website:| efxkits.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Rows per page
Query Builder