Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:41 a.m.10 views

CVE-2024-52763

A cross-site scripting XSS vulnerability in the component /graphallperiods.php of Ganglia-web v3.73 to v3.75 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the "g" parameter...

5.4CVSS5.7AI score0.00628EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:11 a.m.9 views

CVE-2023-39709

Multiple cross-site scripting XSS vulnerabilities in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name, Address, and Company parameters under the Add Member section...

6.1CVSS6.1AI score0.00541EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:53 a.m.9 views

CVE-2023-33793

A stored cross-site scripting XSS vulnerability in the Create Power Panels /dcim/power-panels/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.6AI score0.00394EPSS
Exploits1References1
CVE
CVE
added 2024/07/09 12:0 a.m.60 views

CVE-2024-40732

CVE-2024-40732 describes a cross-site scripting (XSS) vulnerability in NetBox v4.0.3. The issue allows an attacker to inject arbitrary HTML/ scripts via the Name parameter in the /dcim/rear-ports/add/ endpoint. Affected software: NetBox v4.0.3 (DCIM/IPAM context). Root cause: lack of proper filte...

7.1CVSS5.6AI score0.004EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2024/03/01 11:15 p.m.13 views

Cross site scripting

A cross-site scripting XSS vulnerability in the Submission module of Pkp Ojs v3.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Input subject field under the Add Discussion function...

6.1AI score0.00443EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/02/22 12:0 a.m.20 views

CVE-2024-26490

A cross-site scripting XSS vulnerability in the Addon JD Simple module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field...

5.7AI score0.00408EPSS
Exploits1References1
Prion
Prion
added 2024/02/14 3:15 p.m.18 views

Cross site scripting

A cross-site scripting XSS vulnerability in Task Manager App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Project Name parameter /TaskManager/Projects.php...

5.8CVSS5.9AI score0.00411EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/01/05 12:0 a.m.19 views

CVE-2022-36677

Obsidian Mind Map v1.1.0 allows attackers to execute arbitrary code via a crafted payload injected into an uploaded document...

7.7AI score0.00504EPSS
Exploits1References2
CNVD
CNVD
added 2023/12/15 12:0 a.m.4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-0298598)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7.2AI score0.00597EPSS
Exploits0References1
CNVD
CNVD
added 2023/12/15 12:0 a.m.17 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2023-9943725)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS7.5AI score0.00597EPSS
Exploits0References1
Prion
Prion
added 2023/07/24 7:15 p.m.17 views

Cross site scripting

A cross-site scripting XSS vulnerability in Assembly Software Trialworks v11.4 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the asset src parameter...

5.8CVSS5.9AI score0.0038EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/07/13 4:15 p.m.15 views

Cross site scripting

A cross-site scripting XSS vulnerability in Teacher Subject Allocation System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search text box...

5.8CVSS5.9AI score0.00309EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/05/26 5:15 p.m.28 views

CVE-2023-33780

A stored cross-site scripting XSS vulnerability in TFDi Design smartCARS 3 v0.7.0 and below allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the body of news article...

5.4CVSS5.3AI score0.00472EPSS
Exploits1References1
Rows per page
Query Builder