Lucene search
K

8 matches found

Positive Technologies
Positive Technologies
added 2023/04/18 12:0 a.m.5 views

PT-2023-8600 · Xwiki · Xwiki Platform

Name of the Vulnerable Software and Affected Versions: XWiki Platform versions prior to 13.10.11 XWiki Platform versions prior to 14.4.8 XWiki Platform versions prior to 14.10.2 XWiki Platform versions prior to 15.0-rc-1 Description: The issue exists due to the lack of measures to neutralize...

9CVSS9.1AI score0.01945EPSS
Exploits1References11
Positive Technologies
Positive Technologies
added 2021/05/18 12:0 a.m.7 views

PT-2021-19813 · Xwiki · Xwiki Platform

Name of the Vulnerable Software and Affected Versions: XWiki Platform versions prior to 12.6.7 XWiki Platform versions prior to 12.10.3 Description: A user without Script or Programming right is able to execute script requiring privileges by editing gadget titles in the dashboard. Recommendations...

8.8CVSS8.7AI score0.02102EPSS
Exploits1References10
NVD
NVD
added 2019/05/16 2:29 a.m.25 views

CVE-2019-1860

A vulnerability in the dashboard gadget rendering of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to obtain or manipulate sensitive information between a users browser and Cisco Unified Intelligence Center. The vulnerability is due to the lack of gadget...

5.9CVSS5.6AI score0.01257EPSS
Exploits0References2
OSV
OSV
added 2019/05/16 2:29 a.m.1 views

CVE-2019-1860

A vulnerability in the dashboard gadget rendering of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to obtain or manipulate sensitive information between a users browser and Cisco Unified Intelligence Center. The vulnerability is due to the lack of gadget...

5.9CVSS6.2AI score0.01257EPSS
Exploits0References2
Prion
Prion
added 2019/05/16 2:29 a.m.24 views

Design/Logic Flaw

A vulnerability in the dashboard gadget rendering of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to obtain or manipulate sensitive information between a users browser and Cisco Unified Intelligence Center. The vulnerability is due to the lack of gadget...

4CVSS5.6AI score0.01257EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2019/05/16 1:20 a.m.8 views

CVE-2019-1860 Cisco Unified Intelligence Center Remote File Injection Vulnerability

A vulnerability in the dashboard gadget rendering of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to obtain or manipulate sensitive information between a users browser and Cisco Unified Intelligence Center. The vulnerability is due to the lack of gadget...

5.9CVSS6.4AI score0.01257EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/05/16 1:20 a.m.23 views

CVE-2019-1860 Cisco Unified Intelligence Center Remote File Injection Vulnerability

A vulnerability in the dashboard gadget rendering of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to obtain or manipulate sensitive information between a users browser and Cisco Unified Intelligence Center. The vulnerability is due to the lack of gadget...

5.9CVSS5.6AI score0.01257EPSS
Exploits0References2
Cisco
Cisco
added 2019/05/15 4:0 p.m.95 views

Cisco Unified Intelligence Center Remote File Injection Vulnerability

A vulnerability in the dashboard gadget rendering of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to obtain or manipulate sensitive information between a user’s browser and Cisco Unified Intelligence Center. The vulnerability is due to the lack of gadget...

5.9CVSS5.5AI score0.01257EPSS
Exploits0References1
Rows per page
Query Builder