Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:15 a.m.3 views

CVE-2022-23053

Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via the “Condition Widget” element, that allows the injection of malicious JavaScript into the ‘URL’ field. This issue affects: nasa openmct 1.7.7 version and prior versions; 1.3.0 version and later versions...

6.1CVSS5.8AI score0.00328EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-28163

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00328EPSS
Exploits0References1
Veracode
Veracodeadded 2022/02/21 10:7 a.m.19 views

Cross-site Scripting (XSS)

openmct is vulnerable to cross-site scripting. The library does not properly escape the URL field in the Condition Widget element, allowing an attacker to inject and execute malicious javascript...

6.1CVSS2.9AI score0.00328EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKBadded 2022/02/20 7:15 p.m.3 views

CVE-2022-23053

Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via the “Condition Widget” element, that allows the injection of malicious JavaScript into the ‘URL’ field. This issue affects: nasa openmct 1.7.7 version and prior versions; 1.3.0 version and later versions...

6.1CVSS5.8AI score0.00328EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2022/02/20 7:15 p.m.11 views

Cross site scripting

Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via the “Condition Widget” element, that allows the injection of malicious JavaScript into the ‘URL’ field. This issue affects: nasa openmct 1.7.7 version and prior versions; 1.3.0 version and later versions...

4.3CVSS6AI score0.00328EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2022/02/20 7:0 p.m.11 views

CVE-2022-23053 Openmct XSS via the “Condition Widget”

Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via the “Condition Widget” element, that allows the injection of malicious JavaScript into the ‘URL’ field. This issue affects: nasa openmct 1.7.7 version and prior versions; 1.3.0 version and later versions...

6.1CVSS6.3AI score0.00328EPSS
Exploits0References1
CNNVD
CNNVDadded 2022/02/20 12:0 a.m.3 views

Nasa Openmct 跨站脚本漏洞

Nasa Openmct is an open source open mission control technology from NASA, Inc. for visualizing data on desktop and mobile devices. A cross-site scripting vulnerability exists in Openmct versions 1.3.0 through 1.7.7, which stems from the software's lack of effective filtering and escaping for...

6.1CVSS5.9AI score0.00328EPSS
Exploits0References3
CNNVD
CNNVDadded 2022/02/20 12:0 a.m.2 views

Openmct 跨站脚本漏洞

Nasa Openmct is an open source open mission control technology from NASA, Inc. It is used to visualize data on desktop and mobile devices. A cross-site scripting vulnerability exists in Openmct up to version 1.7.7, which stems from the software's lack of effective filtering and escaping of...

6.1CVSS5.9AI score0.00328EPSS
Exploits0References3
Rows per page
Query Builder