Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NVD
NVDadded 2024/04/29 6:15 p.m.10 views

CVE-2024-33338

Cross Site Scripting vulnerability in jizhicms v.2.5.4 allows a remote attacker to obtain sensitive information via a crafted article publication request...

7.3CVSS5.7AI score0.01731EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2024/04/29 12:0 a.m.17 views

CVE-2024-33338

Cross Site Scripting vulnerability in jizhicms v.2.5.4 allows a remote attacker to obtain sensitive information via a crafted article publication request...

6AI score0.01731EPSS
Exploits1References3
CVE
CVEadded 2024/04/29 12:0 a.m.54 views

CVE-2024-33338

CVE-2024-33338 concerns jizhicms v2.5.4. The vulnerability is a Cross Site Scripting (XSS) flaw where content submitted via a crafted article publication request can disclose sensitive information. Red Hat and other sources corroborate XSS in jizhicms, noting that the content filtering happens cl...

7.3CVSS5.9AI score0.01731EPSS
Exploits1References3Affected Software1
CNNVD
CNNVDadded 2024/04/29 12:0 a.m.1 views

jizhicms 安全漏洞

Extreme Networks Technology JIZHICMS Extreme CMS is an open source content management system CMS from Extreme Networks Technology, China. A security vulnerability exists in jizhicms version v.2.5.4. A remote attacker could exploit the vulnerability to obtain sensitive information via a specially...

7.3CVSS6.4AI score0.01731EPSS
Exploits2References4
Positive Technologies
Positive Technologiesadded 2020/03/27 12:0 a.m.3 views

PT-2020-15048 · Otrs +2 · Otrs +3

Name of the Vulnerable Software and Affected Versions: OTRS Community Edition versions 6.0.26 and prior OTRS versions 7.0.15 and prior Description: The issue allows an attacker to craft an article with a link to the customer address book containing malicious JavaScript content. When an agent open...

9.8CVSS7.1AI score0.3466EPSS
Exploits18References148
OSV
OSVadded 2017/06/24 5:29 p.m.2 views

CVE-2017-9848

SQL injection vulnerability in CInfoService.asmx in WebServices in Easysite 7.0 could allow remote attackers to execute arbitrary SQL commands via an XML document containing a crafted ArticleIDs element within a GetArticleHitsArray element...

9.8CVSS6.1AI score0.00456EPSS
Exploits0References3
seebug.org
seebug.orgadded 2007/03/15 12:0 a.m.30 views

NewsReactor 20070220 Article Grabbing Remote BoF Exploit (2)

No description provided by source. / NewsReactor 20070220 Article Grabbing Remote Buffer Overflow Exploit 2 &nb...

7.1AI score
Exploits0
0day.today
0day.todayadded 2007/03/12 12:0 a.m.18 views

NewsReactor 20070220 Article Grabbing Remote BoF Exploit (2)

Exploit for unknown platform in category remote exploits ============================================================ NewsReactor 20070220 Article Grabbing Remote BoF Exploit 2 ============================================================ / NewsReactor 20070220 Article Grabbing Remote Buffer...

7.1AI score
Exploits0
Gentoo Linux
Gentoo Linuxadded 2006/11/24 12:0 a.m.17 views

TIN: Multiple buffer overflows

Background TIN is a threaded NNTP and spool based UseNet newsreader for a variety of platforms. Description Urs Janssen and Aleksey Salow have reported multiple buffer overflows in TIN. Additionally, the OpenPKG project has reported an allocation off-by-one flaw which can lead to a buffer overflo...

7.5CVSS7.3AI score0.01602EPSS
Exploits0
Rows per page
Query Builder