Lucene search
K

235 matches found

CNNVD
CNNVD
added 2021/08/06 12:0 a.m.5 views

Chikitsa Patient Management System 跨站脚本漏洞

Chikitsa Patient Management System is a software application. An open source patient management software that is fast, responsive and easy to use. A security vulnerability exists in Chikitsa Patient Management System 2.0.0, which arises from a lack of proper validation of client-side data by the...

5.4CVSS5.8AI score0.01008EPSS
Exploits2References7
CNNVD
CNNVD
added 2021/07/15 12:0 a.m.7 views

Advantech R-SeeNet 跨站脚本漏洞

Advantech R-SeeNet is an industrial monitoring software from Advantech, Taiwan, China. The software is based on the snmp protocol for monitoring platforms and is available for Linux and Windows platforms.A cross-site scripting vulnerability exists in Advantech R-SeeNet, which stems from the lack ...

9.6CVSS5.5AI score0.63415EPSS
Exploits1References4
CNVD
CNVD
added 2021/06/09 12:0 a.m.5 views

Accela Civic Platform Cross-Site Scripting Vulnerability

Accela Civic Platform is Accela's application software cloud-based solution to modernize city systems for land management and code enforcement, increased civic engagement and mobile information access. Accela Civic Platform cross-site scripting vulnerability that stems from Accela Platform's lack...

6.1CVSS6.1AI score0.10053EPSS
Exploits5References1
CNNVD
CNNVD
added 2021/06/07 12:0 a.m.5 views

Accela Civic Platform 跨站脚本漏洞

Accela Civic Platform is Accela's application software cloud-based solution to modernize city systems for land management and code enforcement, increased civic engagement and mobile information access. Accela Civic Platform cross-site scripting vulnerability that stems from Accela Platform's lack...

6.1CVSS5.4AI score0.10053EPSS
Exploits5References4
CNNVD
CNNVD
added 2021/05/24 12:0 a.m.4 views

Gris CMS 跨站脚本漏洞

Gris CMS is a flat file CMS for developers and Markdown enthusiasts. A cross-site scripting vulnerability exists in Gris CMS v0.1, which stems from a lack of proper validation of client data in the web application, and can be exploited by an attacker to inject malicious JavaScript code to steal...

6.1CVSS5.3AI score0.00812EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/05/13 12:0 a.m.6 views

WAGO 跨站脚本漏洞

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed specifically for applications in industrial environments where digital algorithms operate electronic systems. A cross-site scripting vulnerability exists in WAGO. The vulnerability stems from a lack ...

8.8CVSS5.3AI score0.00629EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/29 12:0 a.m.4 views

Aruba ClearPass Policy Manager 跨站脚本漏洞

Aruba ClearPass Policy Manager is an application from Aruba, Inc. that provides a wireless network security access management system. A cross-site scripting vulnerability exists in Aruba ClearPass Policy Manager versions prior to 6.9.5, 6.8.9, and 6.7.14-HF1, which stems from a lack of proper...

5.4CVSS5.2AI score0.00468EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/04/29 12:0 a.m.4 views

Aruba ClearPass Policy Manager 跨站脚本漏洞

Aruba ClearPass Policy Manager is an application from Aruba, Inc. that provides a secure access management system for wireless networks. a cross-site scripting vulnerability exists in Aruba ClearPass Policy Manager, which stems from the lack of proper validation of client data by the WEB...

4.8CVSS5.3AI score0.00464EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/03/08 12:0 a.m.3 views

Time in Status 跨站脚本漏洞

Atlassian Time in Status is a software application from Atlassian Australia that provides a process for identifying issues by reporting the time spent on each status, assignee or group for each issue. A cross-site scripting vulnerability exists in the Time in Status app for Jira in versions prior...

5.4CVSS5.2AI score0.00908EPSS
Exploits0References4
CNVD
CNVD
added 2021/03/08 12:0 a.m.12 views

Sourcecodester Doctor Appointment System Cross-Site Scripting Vulnerability

Sourcecodester Doctor Appointment System is a Sourcecodesterk open source application. Provides an appointment function . Sourcecodester Doctor Appointment System version 1.0 suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client data in the WEB...

6.1CVSS6.2AI score0.01487EPSS
Exploits3References1
CNNVD
CNNVD
added 2021/03/02 12:0 a.m.6 views

Blackboard Collaborate Ultra 跨站脚本漏洞

Blackboard Collaborate Ultra is a Blackboard open source application. Provides an online course management platform. Blackboard Collaborate Ultra 20.02 suffers from a cross-site scripting vulnerability that stems from the WEB application's lack of proper validation of client data. An attacker can...

6.1CVSS5.2AI score0.00665EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/02/26 12:0 a.m.7 views

Sourcecodesterk Doctor Appointment System 跨站脚本漏洞

Sourcecodester Doctor Appointment System is a Sourcecodesterk open source application. Provides an appointment function . Sourcecodester Doctor Appointment System version 1.0 suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client data in the WEB...

6.1CVSS6.3AI score0.01487EPSS
Exploits3References4
CNVD
CNVD
added 2021/02/25 12:0 a.m.11 views

F5 BIG-IP Cross-Site Scripting Vulnerability (CNVD-2021-13211)

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. F5 BIG-IP suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client data by th...

8.3CVSS6.3AI score0.00788EPSS
Exploits0References1
CNVD
CNVD
added 2021/02/25 12:0 a.m.9 views

F5 BIG-IP AFM Cross-Site Scripting Vulnerability (CNVD-2021-13213)

F5 BIG-IP AFM is an advanced firewall product from F5 USA for protection against DDos attacks. A cross-site scripting vulnerability exists in BIG-IP AFM, which originates from the lack of proper validation of client data by a WEB application. An attacker can exploit this vulnerability to execute...

5.4CVSS6.2AI score0.00492EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/02/24 12:0 a.m.8 views

Six Apart Movable Type 跨站脚本漏洞

Six Apart Movable Type is an application of Six Apart, Inc. Six Apart Movable Type has a cross-site scripting vulnerability in several of its products, which stems from the lack of proper validation of client data in the WEB application and can be exploited to inject arbitrary scripts via...

6.1CVSS6.3AI score0.0081EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/02/11 12:0 a.m.7 views

Open Build Service 跨站脚本漏洞

Open Build Service OBS is a general-purpose system for building and distributing packages from source code in an automated, consistent, and repeatable manner, organized by the Open Build Service. A cross-site scripting vulnerability exists in Open Build Service that stems from a lack of proper...

6.3CVSS6.1AI score0.00748EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/02/11 12:0 a.m.6 views

F5 BIG-IP 跨站脚本漏洞

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. F5 BIG-IP suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client data by th...

8.3CVSS7.1AI score0.00788EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/02/10 12:0 a.m.8 views

Wekan 跨站脚本漏洞

Wekan is a highly finished open source kanban tool. wekan suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data in WEB applications. An attacker could exploit the vulnerability to execute malicious javascript code...

5.4CVSS6AI score0.00751EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/02/10 12:0 a.m.8 views

Henriquedornas 跨站脚本漏洞

Henriquedornas is a web framework from Henriquedornas Brazil. Provides a framework for building websites. A cross-site scripting vulnerability exists in Henriquedornas that stems from a lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerabilit...

5.4CVSS6AI score0.00662EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/02/09 12:0 a.m.8 views

Tufin SecureTrack R20-2 GA Cross-Site Scripting Vulnerability

USA Tufin SecureTrack is a firewall policy management platform from Tufin USA USA. A cross-site scripting vulnerability exists in the Tufin SecureTrack R20-2 GA, which originates from a web application that lacks proper validation of client data. An attacker can exploit this vulnerability to...

5.9CVSS6.2AI score0.00439EPSS
Exploits0References1
Rows per page
Query Builder