Lucene search
K

8 matches found

ATTACKERKB
ATTACKERKB
added 2023/08/09 7:15 p.m.3 views

CVE-2023-39002

A cross-site scripting XSS vulnerability in the act parameter of systemcertmanager.php in OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS6.5AI score0.01162EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/08/09 12:0 a.m.7 views

Deciso OPNsense Cross-Site Scripting Vulnerability

Deciso OPNsense is a FreeBSD-based open source firewall and routing software from the Dutch company Deciso. A cross-site scripting vulnerability exists in OPNsense versions prior to 23.7, which stems from a cross-site scripting XSS vulnerability in the act parameter of the systemcertmanager.php...

6.1CVSS5.8AI score0.01162EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/08/09 12:0 a.m.8 views

PT-2023-26728 · Opnsense · Opnsense Community Edition +1

Name of the Vulnerable Software and Affected Versions: OPNsense Community Edition versions prior to 23.7 OPNsense Business Edition versions prior to 23.4.2 Description: A cross-site scripting XSS issue exists in the act parameter of system certmanager.php, allowing attackers to execute arbitrary...

6.1CVSS6AI score0.01162EPSS
Exploits1References6
vulnersOsv
vulnersOsv
added 2022/07/15 5:17 a.m.4 views

com.dajudge.kindcontainer:kindcontainer (=0.0.15), io.automatiko.quarkus:automatiko-operator (=0.10.0) +93 more potentially affected by CVE-2021-4178 via io.fabric8:kubernetes-client (=5.8.0)

io.fabric8:kubernetes-client MAVEN version =5.8.0 is affected by a known vulnerability. The following packages have a transitive dependency on io.fabric8:kubernetes-client and may be impacted: - com.dajudge.kindcontainer:kindcontainer =0.0.15 - io.automatiko.quarkus:automatiko-operator =0.10.0 -...

6.7CVSS6.8AI score0.00309EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/05/18 12:0 a.m.35 views

openSUSE Security Update : prosody (openSUSE-2021-728)

This update for prosody fixes the following issues : prosody was updated to 0.11.9 : Security : - modlimits, prosody.cfg.lua: Enable rate limits by default - certmanager: Disable renegotiation by default - modproxy65: Restrict access to local c2s connections by default - util.startup: Set more...

7.8CVSS6.7AI score0.02261EPSS
Exploits0References6
OPENSUSE Linux
OPENSUSE Linux
added 2021/05/15 12:0 a.m.36 views

Security update for prosody (important)

openSUSE Security Update: Security update for prosody Announcement ID: openSUSE-SU-2021:0728-1 Rating: important References: 1186027 Cross-References: CVE-2021-32917 CVE-2021-32918 CVE-2021-32919 CVE-2021-32920 Affected Products: openSUSE Leap 15.2 An update that fixes four vulnerabilities is now...

7.8CVSS6.7AI score0.02261EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/05/15 12:0 a.m.27 views

openSUSE: Security Advisory for prosody (openSUSE-SU-2021:0728-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.4AI score0.02261EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/10/12 12:0 a.m.14 views

Fedora 32 : prosody (2020-a48bf86c27)

Prosody 0.11.7 ============== This is a security release for the 0.11.x stable branch. It is strongly recommended that all users upgrade to this release, especially those whose deployments have enabled modwebsocket. As well as upgrading, we recommend all public deployments to review and configure...

5.9AI score
Exploits0References1
Rows per page
Query Builder