Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 4:32 p.m.5 views

CVE-2020-24665

The Dashboard Editor in Hitachi Vantara Pentaho through 7.x - 8.x contains an XML Entity Expansion injection vulnerability, which allows an authenticated remote users to trigger a denial of service DoS condition. Specifically, the vulnerability lies in the 'dashboardXml' parameter. Remediated in ...

6.5CVSS7AI score0.00654EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 3:21 p.m.7 views

CVE-2020-24670

The Dashboard Editor in Hitachi Vantara Pentaho through 7.x - 8.x contains a reflected Cross-site scripting vulnerability, which allows an authenticated remote users to execute arbitrary JavaScript code. Specifically, the vulnerability lies in the 'type' attribute of 'dashboardXml' parameter...

5.4CVSS6.9AI score0.00203EPSS
Exploits0
NVD
NVDadded 2021/01/29 7:15 p.m.11 views

CVE-2020-24670

The Dashboard Editor in Hitachi Vantara Pentaho through 7.x - 8.x contains a reflected Cross-site scripting vulnerability, which allows an authenticated remote users to execute arbitrary JavaScript code. Specifically, the vulnerability lies in the 'type' attribute of 'dashboardXml' parameter...

5.4CVSS5.7AI score0.00203EPSS
Exploits0References2
OSV
OSVadded 2021/01/29 7:15 p.m.1 views

CVE-2020-24670

The Dashboard Editor in Hitachi Vantara Pentaho through 7.x - 8.x contains a reflected Cross-site scripting vulnerability, which allows an authenticated remote users to execute arbitrary JavaScript code. Specifically, the vulnerability lies in the 'type' attribute of 'dashboardXml' parameter...

5.4CVSS6.3AI score0.00203EPSS
Exploits0References2
OSV
OSVadded 2021/01/29 7:15 p.m.1 views

CVE-2020-24664

The dashboard Editor in Hitachi Vantara Pentaho through 7.x - 8.x contains a reflected Cross-site scripting vulnerability, which allows an authenticated remote users to execute arbitrary JavaScript code. Specifically, the vulnerability lies in the 'pho:title' attribute of 'dashboardXml' parameter...

5.4CVSS6AI score
Exploits0References2
CNNVD
CNNVDadded 2021/01/29 12:0 a.m.2 views

Hitachi Vantara Pentaho 注入漏洞

Pentaho is a Business Intelligence BI software that provides data integration, OLAP services, reporting, information dashboards, data mining, and Extract, Transform, Load ETL capabilities. An XML entity extension injection vulnerability exists in the 'dashboardXml' parameter of the Dashboard Edit...

6.5CVSS6.6AI score0.00654EPSS
Exploits0References3
CNNVD
CNNVDadded 2021/01/29 12:0 a.m.1 views

Hitachi Vantara Pentaho 跨站脚本漏洞

Pentaho is a Business Intelligence BI software that provides data integration, OLAP services, reporting, information dashboards, data mining, and Extract, Transform, Load ETL capabilities. A reflected cross-site scripting vulnerability exists in the 'pho:title' attribute of the 'dashboardXml'...

5.4CVSS6.2AI score0.00203EPSS
Exploits0References3
CNNVD
CNNVDadded 2021/01/29 12:0 a.m.2 views

Hitachi Vantara Pentaho 跨站脚本漏洞

Pentaho is a Business Intelligence BI software that provides data integration, OLAP services, reporting, information dashboards, data mining, and Extract, Transform, Load ETL capabilities. A reflected cross-site scripting vulnerability exists in the 'type' attribute of the 'dashboardXml' paramete...

5.4CVSS6.2AI score0.00203EPSS
Exploits0References3
Rows per page
Query Builder