Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/06/12 9:19 a.m.5 views

CVE-2025-3117

CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability exists impacting configuration file paths that could cause an unvalidated data injected by authenticated malicious user leading to modify or read data in a victim’s browser...

5.4CVSS5.2AI score0.00191EPSS
Exploits0References1
Circl
Circl
added 2025/06/10 9:33 a.m.10 views

CVE-2025-3117

creationtimestamp| type| source ---|---|--- 2025-06-10 09:33:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17851 2025-06-24 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-175-03 2025-06-25 10:49:24+00:00| published-proof-of-concept| https://t.me/icscert/1198...

5.4CVSS4.8AI score0.00191EPSS
Exploits0References3
NVD
NVD
added 2025/06/10 9:15 a.m.9 views

CVE-2025-3117

CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability exists impacting configuration file paths that could cause an unvalidated data injected by authenticated malicious user leading to modify or read data in a victim’s browser...

5.4CVSS0.00191EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/10 8:43 a.m.3 views

CVE-2025-3117

CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability exists impacting configuration file paths that could cause an unvalidated data injected by authenticated malicious user leading to modify or read data in a victim’s browser...

5.4CVSS6.6AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 2025/06/10 8:43 a.m.49 views

CVE-2025-3117

CVE-2025-3117 affects Schneider Electric Modicon Controllers (M241/M251/M258/LMC058/M262). The vulnerability is a Cross-Site Scripting (CWE-79) caused by improper neutralization of input during web page generation, allowing an authenticated malicious user to inject unvalidated data that could mod...

5.4CVSS7AI score0.00191EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/10 8:43 a.m.15 views

CVE-2025-3117

CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability exists impacting configuration file paths that could cause an unvalidated data injected by authenticated malicious user leading to modify or read data in a victim’s browser...

5.4CVSS0.00191EPSS
Exploits0References1
Rows per page
Query Builder