Lucene search
K

27 matches found

NVD
NVD
added 2023/01/05 10:15 p.m.29 views

CVE-2022-3927

The affected products store both public and private key that are used to sign and protect Custom Parameter Set CPS file from modification. An attacker that manages to exploit this vulnerability will be able to change the CPS file, sign it so that it is trusted as the legitimate CPS file. This iss...

9.8CVSS8.9AI score0.00569EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/01/05 9:41 p.m.7 views

CVE-2022-3927 The affected products store public and private key that are used to sign and protect custom parameter set files from modification.

The affected products store both public and private key that are used to sign and protect Custom Parameter Set CPS file from modification. An attacker that manages to exploit this vulnerability will be able to change the CPS file, sign it so that it is trusted as the legitimate CPS file. This iss...

8CVSS6.7AI score0.00569EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/01/05 12:0 a.m.5 views

Hitachi FOXMAN-UN 信任管理问题漏洞

Hitachi FOXMAN-UN is a powerful toolset for a comprehensive NMS suite from Hitachi, Japan. A security vulnerability exists in Hitachi FOXMAN-UN, which stems from the fact that it contains public and private keys used to sign and protect Custom Parameter Sets CPS files from modification, allowing ...

9.8CVSS8.3AI score0.00569EPSS
Exploits0References4
OSV
OSV
added 2022/03/25 7:15 p.m.3 views

CVE-2022-25611

Authenticated Stored Cross-Site Scripting XSS in Simple Event Planner plugin = 1.5.4 allows attackers with contributor or higher user roles to inject the malicious script by using vulnerable parameter &customaddseg...

5.4CVSS5.8AI score0.00549EPSS
Exploits0References2
CNVD
CNVD
added 2021/09/28 12:0 a.m.15 views

WordPress plugin uListing SQL injection vulnerability

The WordPress plugin uListing is a directory and listing plugin based on Vue.js. A SQL injection vulnerability exists in the custom parameter of the WordPress plugin uListing 2.0.3 and earlier versions. No details of the vulnerability are currently available...

9.8CVSS3AI score0.02067EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/09/27 12:0 a.m.4 views

WordPress 插件 SQL注入漏洞

The WordPress plugin uListing is a directory and listing plugin based on Vue.js. A SQL injection vulnerability exists in the custom parameter of the WordPress plugin uListing 2.0.3 and earlier versions. No details of the vulnerability are currently available...

9.8CVSS8.5AI score0.02067EPSS
Exploits1References3
The Coalfire Blog
The Coalfire Blog
added 2021/02/01 9:33 p.m.12 views

Automated application scanning: handling complicated logins with AppScan (only!)

Ory Segal @orysegal from IBM Rational reached out with a simpler method to handle this natively in AppScan. It involves configuring AppScan to add a custom parameter to each request. For the sample case in the authexamples GitHub repository it would be handled like this...

1.4AI score
Exploits0
Rows per page
Query Builder