Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6029 matches found

Positive Technologies
Positive Technologiesadded 2022/10/27 12:0 a.m.3 views

PT-2022-21304 · Softr · Softr

Name of the Vulnerable Software and Affected Versions: Softr version 2.0 Description: A Cross-Site Scripting XSS issue was found, allowing attackers to execute arbitrary web scripts or HTML via a crafted payload. The vulnerability is exploited through the First Name parameter under the Create A N...

6.1CVSS6AI score0.00486EPSS
Exploits1References3
Cvelist
Cvelistadded 2022/10/27 12:0 a.m.17 views

CVE-2022-32407

Softr v2.0 was discovered to contain a Cross-Site Scripting XSS vulnerability via the First Name parameter under the Create A New Account module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6AI score0.00486EPSS
Exploits1References2
CVE
CVEadded 2022/10/27 12:0 a.m.51 views

CVE-2022-32407

CVE-2022-32407 affects Softr v2.0 with a Cross‑Site Scripting (XSS) issue in the Create A New Account module, exploitable via the First Name parameter to execute arbitrary scripts/HTML. Primary CVE entry notes a medium severity (CVSS v3.1 base score 6.1) with network access and user interaction r...

6.1CVSS5.9AI score0.00486EPSS
Exploits1References2Affected Software1
UbuntuCve
UbuntuCveadded 2022/10/26 7:15 p.m.31 views

CVE-2022-3669

A vulnerability was found in Axiomatic Bento4 and classified as problematic. This issue affects the function AP4AvccAtom::Create of the component mp4edit. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The...

5.5CVSS5.7AI score0.0066EPSS
Exploits1References1
OSV
OSVadded 2022/10/26 7:15 p.m.0 views

UBUNTU-CVE-2022-3668

A vulnerability has been found in Axiomatic Bento4 and classified as problematic. This vulnerability affects the function AP4AtomFactory::CreateAtomFromStream of the component mp4edit. The manipulation leads to memory leak. The attack can be initiated remotely. The exploit has been disclosed to t...

5.5CVSS4.8AI score0.00653EPSS
Exploits1References2
OSV
OSVadded 2022/10/26 7:15 p.m.1 views

UBUNTU-CVE-2022-3669

A vulnerability was found in Axiomatic Bento4 and classified as problematic. This issue affects the function AP4AvccAtom::Create of the component mp4edit. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The...

5.5CVSS4.8AI score0.0066EPSS
Exploits1References2
CNNVD
CNNVDadded 2022/10/25 12:0 a.m.4 views

Delta Electronics InfraSuite Device Master 访问控制错误漏洞

Delta Electronics InfraSuite Device Master is used to simplify and automate critical device monitoring by Delta Electronics of Taiwan, China. An access control error vulnerability exists in versions prior to Delta Electronics InfraSuite Device Master 00.00.01a, which stems from a lack of proper...

9.8CVSS7.4AI score0.0064EPSS
Exploits0References4
OSV
OSVadded 2022/10/24 2:15 p.m.1 views

UBUNTU-CVE-2022-43680

In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XMLExternalEntityParserCreate in out-of-memory situations...

7.5CVSS6.8AI score0.02241EPSS
Exploits1References8
ATTACKERKB
ATTACKERKBadded 2022/10/18 9:15 p.m.3 views

CVE-2022-39419

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM. Successful attacks of...

4.3CVSS7.3AI score0.00451EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2022/10/18 9:15 p.m.4 views

CVE-2022-39419

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM. Successful attacks of...

4.3CVSS5.8AI score0.00451EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/10/18 12:0 a.m.5 views

PT-2022-24966 · Oracle · Oracle Database Server +1

Name of the Vulnerable Software and Affected Versions: Oracle Database Server versions 19c through 21c Description: The issue affects the Java VM component, allowing a low-privileged attacker with Create Procedure privilege and network access via Oracle Net to compromise the Java VM. This can...

4.3CVSS4.6AI score0.00451EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2022/10/17 12:15 p.m.2 views

CVE-2022-3546

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /csms/admin/?page=user/list of the component Create User Handler. The manipulation of the argument First Name/Last...

4.8CVSS3.6AI score0.00515EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2022/10/17 12:15 p.m.1 views

CVE-2022-3546

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /csms/admin/?page=user/list of the component Create User Handler. The manipulation of the argument First Name/Last...

4.8CVSS3.8AI score0.00515EPSS
Exploits0References2
NVD
NVDadded 2022/10/17 12:15 p.m.20 views

CVE-2022-3546

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /csms/admin/?page=user/list of the component Create User Handler. The manipulation of the argument First Name/Last...

4.8CVSS0.00515EPSS
Exploits0References2
Prion
Prionadded 2022/10/17 12:15 p.m.17 views

Cross site scripting

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /csms/admin/?page=user/list of the component Create User Handler. The manipulation of the argument First Name/Last...

4.3CVSS4.8AI score0.00515EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2022/10/17 12:0 a.m.22 views

CVE-2022-3546 SourceCodester Simple Cold Storage Management System Create User cross site scripting

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /csms/admin/?page=user/list of the component Create User Handler. The manipulation of the argument First Name/Last...

2.4CVSS5.1AI score0.00515EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2022/10/17 12:0 a.m.4 views

PT-2022-22834 · Sourcecodester · Sourcecodester Simple Cold Storage Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Cold Storage Management System version 1.0 Description: A vulnerability was found in the Create User Handler component of the SourceCodester Simple Cold Storage Management System. The issue affects some unknown...

4.8CVSS4.8AI score0.00515EPSS
Exploits0References5
Openbugbounty
Openbugbountyadded 2022/10/15 1:52 p.m.13 views

entasva.com Cross Site Scripting vulnerability OBB-2998065

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
BDU FSTEC
BDU FSTECadded 2022/10/13 12:0 a.m.7 views

The vulnerability of the create_helper() function in the /src/helper.c component of the DNS server Dnsmasq, which allows a hacker to cause a service failure.

The vulnerability of the createhelper function in the /src/helper.c component of the DNS server Dnsmasq is related to the allocation of unlimited memory. Exploiting this vulnerability allows a remote attacker to cause a service failure by using a specially created DHCP response...

4.3CVSS5.8AI score0.02664EPSS
Exploits0References6Affected Software4
Openbugbounty
Openbugbountyadded 2022/10/11 7:6 p.m.5 views

arti-service.kz Cross Site Scripting vulnerability OBB-2991170

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Rows per page
Query Builder