Lucene search
K

30 matches found

CNVD
CNVD
added 2020/03/27 12:0 a.m.3 views

Dart Cross-Site Scripting Vulnerability

Dart is an open source programming language. A cross-site scripting vulnerability exists in Dart. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerability to execute client-side code...

6.1CVSS6.4AI score0.00316EPSS
Exploits0
CNVD
CNVD
added 2020/03/19 12:0 a.m.2 views

Contao Cross-Site Scripting Vulnerability

Contao is an open source content management system CMS developed using PHP. The system supports search engine , rights management and CSS framework . A cross-site scripting vulnerability exists in Contao versions prior to 4.5.7, which stems from a lack of proper validation of client-side data by...

6.1CVSS6.4AI score0.00811EPSS
Exploits0
CNVD
CNVD
added 2020/03/17 12:0 a.m.3 views

PrimeTek PrimeFaces Cross-Site Scripting Vulnerability

Primetek Primefaces is an open source use in the Java EE system UI library . A cross-site scripting vulnerability in the tooltip/tooltip.js file in PrimeTek PrimeFaces version 7.0.11, which stems from a lack of proper validation of client-side data in a WEB application, can be exploited by an...

6.1CVSS6.4AI score0.00811EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/03 12:0 a.m.3 views

MassCode Cross-Site Scripting Vulnerability

massCode is the open source code segment manager. A cross-site scripting vulnerability exists in massCode version 1.0.0-alpha.6, which stems from the lack of proper validation of client-side data in a web application and can be exploited by an attacker to execute client-side code...

6.1CVSS6.6AI score0.01436EPSS
Exploits1References1
CNVD
CNVD
added 2019/11/26 12:0 a.m.2 views

Nokia IMPACT Cross-Site Scripting Vulnerability

Nokia IMPACT is a suite of intelligent management platforms for the Internet of Things IoT from the Finnish company Nokia. A cross-site scripting vulnerability exists in Nokia IMPACT. The vulnerability stems from the lack of proper validation of client-side data by the web application. An attacke...

6.1CVSS6.3AI score0.00709EPSS
Exploits1References1
CNVD
CNVD
added 2019/10/21 12:0 a.m.1 views

Rocket.Chat Cross-Site Scripting Vulnerability (CNVD-2019-36863)

Rocket.Chat is an open source team chat software. A cross-site scripting vulnerability exists in versions of Rocket.Chat prior to 2.1.0, which stems from a lack of proper validation of client-side data by the web application and can be exploited by an attacker to execute client-side code...

6.1CVSS6.4AI score0.04023EPSS
Exploits5References1
CNVD
CNVD
added 2019/05/23 12:0 a.m.5 views

Mozilla Firefox Cross-Site Scripting Vulnerability (CNVD-2019-15665)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A cross-site scripting vulnerability exists in Mozilla Firefox versions prior to 67, which stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit thi...

6.1CVSS8.2AI score0.00645EPSS
Exploits0References1
CNVD
CNVD
added 2019/05/13 12:0 a.m.5 views

Joomla! cross-site scripting vulnerability (CNVD-2019-15713)

Joomla! is the U.S. Open Source Matters team of a set of PHP and MySQL development using open source , cross-platform content management system CMS. A cross-site scripting vulnerability exists in versions of Joomla! prior to 3.9.6. The vulnerability stems from a lack of proper validation of...

6.1CVSS6.3AI score0.00793EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2009/01/19 12:0 a.m.34 views

phpads 2.0 - Multiple Vulnerabilities

Vendor: http://blondish.net Versions: PHPAds 2.0 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/advisories.php?id=8 ---- First, we need to acquire administrative access. We point our browser at...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2009/01/12 12:0 a.m.17 views

Silentum Uploader 1.4.0 File Deletion

Vendor: http://hypersilence.net Versions: Silentum Uploader 1.4.0 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/advisories.php?id=2 ---- Due to insufficient validation of client-side data, we can alter the path of files to be...

7.4AI score
Exploits0
Rows per page
Query Builder