Lucene search
K

9 matches found

NVD
NVD
added 2020/03/19 6:15 p.m.10 views

CVE-2019-20517

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the contact/ URI...

7.4CVSS6.3AI score0.00786EPSS
Exploits1References1
OSV
OSV
added 2020/03/19 6:15 p.m.13 views

CVE-2019-20517

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the contact/ URI...

6.1CVSS5.8AI score
Exploits0References1
Prion
Prion
added 2020/03/19 6:15 p.m.12 views

Cross site scripting

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the contact/ URI...

4.3CVSS5.9AI score0.00786EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/03/19 5:52 p.m.42 views

CVE-2019-20517

CVE-2019-20517 affects ERPNext 11.1.47 and is a reflected XSS vulnerability reachable via PATH_INFO to the /contact/ URI. The root cause noted in CNVD-2020-19000 is lack of proper validation of client-side data by the web application, allowing an attacker to execute client-side code. Public refer...

7.4CVSS5.9AI score0.00786EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/10/10 1:6 a.m.20 views

CVE-2019-17417

PbootCMS 2.0.2 allows XSS via vectors involving the Pboot/admin.php?p=/Single/index/mcode/1 and Pboot/?contact/ URIs...

4.8CVSS4.8AI score0.00646EPSS
Exploits1References1
Prion
Prion
added 2019/10/10 1:6 a.m.15 views

Cross site scripting

PbootCMS 2.0.2 allows XSS via vectors involving the Pboot/admin.php?p=/Single/index/mcode/1 and Pboot/?contact/ URIs...

3.5CVSS4.8AI score0.00646EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/10/09 10:30 p.m.26 views

CVE-2019-17417

PbootCMS 2.0.2 allows XSS via vectors involving the Pboot/admin.php?p=/Single/index/mcode/1 and Pboot/?contact/ URIs...

4.8AI score0.00646EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2016/08/09 12:0 a.m.10 views

Asterisk Long Contact URIs DoS Vulnerability (AST-2016-004)

Asterisk is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:digium:asterisk"; if...

7.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/04/29 12:0 a.m.17 views

Asterisk REGISTER Request Contact URI Handling DoS (AST-2016-004)

According to its SIP banner, the version of Asterisk running on the remote host is either 13.x prior to 13.8.1 or 13.1-cert prior to 13.1-cert5. It is, therefore, affected by a flaw when processing incoming REGISTER requests if the REGISTER contains an overlong URI in the Contact header. An...

5.7AI score
Exploits0References2
Rows per page
Query Builder