Lucene search
+L

9 matches found

nvd
nvd
added 2025/04/16 9:15 a.m.15 views

CVE-2024-52281

A: Improper Neutralization of Input During Web Page Generation vulnerability in SUSE rancher allows a malicious actor to perform a Stored XSS attack through the cluster description field. This issue affects rancher: from 2.9.0 before 2.9.4...

8.9CVSS0.00505EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/04/16 8:31 a.m.9 views

CVE-2024-52281 Stored Cross-site Scripting vulnerability in Rancher UI

A: Improper Neutralization of Input During Web Page Generation vulnerability in SUSE rancher allows a malicious actor to perform a Stored XSS attack through the cluster description field. This issue affects rancher: from 2.9.0 before 2.9.4...

8.9CVSS8.4AI score0.00505EPSS
Exploits0References2
cvelist
cvelist
added 2025/04/16 8:31 a.m.26 views

CVE-2024-52281 Stored Cross-site Scripting vulnerability in Rancher UI

A: Improper Neutralization of Input During Web Page Generation vulnerability in SUSE rancher allows a malicious actor to perform a Stored XSS attack through the cluster description field. This issue affects rancher: from 2.9.0 before 2.9.4...

8.9CVSS0.00505EPSS
Exploits0References2
osv
osv
added 2025/04/16 8:31 a.m.7 views

CVE-2024-52281 Stored Cross-site Scripting vulnerability in Rancher UI

A: Improper Neutralization of Input During Web Page Generation vulnerability in SUSE rancher allows a malicious actor to perform a Stored XSS attack through the cluster description field. This issue affects rancher: from 2.9.0 before 2.9.4...

8.9CVSS7AI score0.00505EPSS
Exploits0References4
veracode
veracode
added 2025/01/17 5:53 a.m.14 views

Cross-site Scripting (XSS)

github.com/rancher/rancher is vulnerable to Cross-site Scripting XSS. The vulnerability is due to a Stored XSS attack, which occurs when a malicious actor can inject and store malicious scripts via the cluster description field, leading to potential execution of unauthorized code within the UI...

8.9CVSS5.8AI score0.00505EPSS
Exploits0
github
github
added 2025/01/14 10:3 p.m.13 views

Rancher UI has Stored Cross-site Scripting vulnerability

Impact A vulnerability has been identified within Rancher UI that allows a malicious actor to perform a Stored XSS attack through the cluster description field. Please consult the associated MITRE ATT&CK - Technique - Drive-by Compromise for further information about this category of attack...

8.9CVSS8.4AI score0.00505EPSS
Exploits0References4Affected Software1
cnvd
cnvd
added 2018/03/27 12:0 a.m.6 views

Dell EMC Isilon Cross-Site Scripting Vulnerability

DELL EMC Isilon is a horizontally scalable storage system for unstructured data from Dell.OneFS web administration interface is one of the web administration interfaces. A cross-site scripting vulnerability exists in the Cluster description of the OneFS web administration interface in Dell EMC...

4.8CVSS6.2AI score0.01861EPSS
Exploits5References1
nvd
nvd
added 2018/03/26 6:29 p.m.29 views

CVE-2018-1186

Dell EMC Isilon versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, versions 7.2.1.x, and version 7.1.1.11 is affected by a cross-site scripting vulnerability in the Cluster description of the OneFS web administration interface. A malicious administrator may potentially...

4.8CVSS4.8AI score0.01861EPSS
Exploits5References4
osv
osv
added 2018/03/26 6:29 p.m.4 views

CVE-2018-1186

Dell EMC Isilon versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, versions 7.2.1.x, and version 7.1.1.11 is affected by a cross-site scripting vulnerability in the Cluster description of the OneFS web administration interface. A malicious administrator may potentially...

4.8CVSS5.8AI score0.01861EPSS
Exploits5References4
Rows per page
Query Builder