Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 3:46 a.m.5 views

CVE-2023-31466

An XSS issue was discovered in FSMLabs TimeKeeper 8.0.17. On the "Configuration - Compliance - Add a new compliance report" and "Configuration - Timekeeper Configuration - Add a new source there" screens, there are entry points to inject JavaScript code...

5.4CVSS6AI score0.00116EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 8:20 a.m.7 views

CVE-2019-17501

Centreon 19.04 allows attackers to execute arbitrary OS commands via the Command Line field of main.php?p=60807=4 aka the Configuration Commands Discovery screen. CVE-2019-17501 and CVE-2019-16405 are similar to one another and may be the same...

9CVSS7.8AI score0.0856EPSS
Exploits3References1
NVD
NVDadded 2019/03/24 10:29 p.m.9 views

CVE-2019-10015

baigoStudio baigoSSO v3.0.1 allows remote attackers to execute arbitrary PHP code via the first form field of a configuration screen, because this code is written to the BGSITENAME field in the optbase.inc.php file...

7.2CVSS7.4AI score0.00805EPSS
Exploits0References1
Cvelist
Cvelistadded 2019/03/24 9:3 p.m.14 views

CVE-2019-10015

baigoStudio baigoSSO v3.0.1 allows remote attackers to execute arbitrary PHP code via the first form field of a configuration screen, because this code is written to the BGSITENAME field in the optbase.inc.php file...

7.4AI score0.00805EPSS
Exploits0References1
CVE
CVEadded 2019/03/24 9:3 p.m.41 views

CVE-2019-10015

CVE-2019-10015 affects baigoStudio baigoSSO v3.0.1. The vulnerability allows remote attackers to execute arbitrary PHP code by supplying payload in the first form field of the configuration screen, where the code is written to BG_SITE_NAME in opt_base.inc.php. This results in remote code executio...

7.2CVSS7.3AI score0.00805EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2018/07/03 4:29 p.m.12 views

CVE-2018-13106

ClipperCMS 1.3.3 has stored XSS via the "Tools - Configuration" screen of the manager/ URI...

4.8CVSS4.9AI score0.00235EPSS
Exploits1References1
OSV
OSVadded 2018/07/03 4:29 p.m.11 views

CVE-2018-13106

ClipperCMS 1.3.3 has stored XSS via the "Tools - Configuration" screen of the manager/ URI...

4.8CVSS5.7AI score
Exploits0References1
Prion
Prionadded 2011/03/28 4:55 p.m.12 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the configuration screen in wp-relatedposts.php in the WP Related Posts plugin 1.0 for WordPress allow remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting XSS sequences via the 1...

4.3CVSS7AI score0.00089EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2011/03/28 4:0 p.m.12 views

CVE-2011-0760

Multiple cross-site request forgery CSRF vulnerabilities in the configuration screen in wp-relatedposts.php in the WP Related Posts plugin 1.0 for WordPress allow remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting XSS sequences via the 1...

6.7AI score0.00089EPSS
Exploits0References5
Rows per page
Query Builder