Lucene search
+L

74 matches found

OSV
OSV
added 2024/03/26 12:0 a.m.4 views

CVE-2024-29644

Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...

6.1CVSS7.1AI score0.00629EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/03/26 12:0 a.m.24 views

CVE-2024-29644

Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...

7.1AI score0.00629EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/03/26 12:0 a.m.11 views

CVE-2024-29644

Cross Site Scripting vulnerability in dcat-admin v.2.1.3 and before allows a remote attacker to execute arbitrary code via a crafted script to the user login box...

7.2AI score0.00629EPSS
Exploits1References2
OSV
OSV
added 2023/05/31 3:30 p.m.40 views

GHSA-P74V-MWVG-8GHP Dcat-Admin vulnerable to Stored Cross-site Scripting

A stored cross-site scripting XSS vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter...

5.4CVSS5.2AI score0.00398EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2023/05/31 3:30 p.m.30 views

Dcat-Admin vulnerable to Stored Cross-site Scripting

A stored cross-site scripting XSS vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter...

5.4CVSS5.7AI score0.00398EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/05/31 1:15 p.m.5 views

CVE-2023-33736

A stored cross-site scripting XSS vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter...

5.4CVSS6.2AI score0.00398EPSS
Exploits1References2
NVD
NVD
added 2023/05/31 1:15 p.m.20 views

CVE-2023-33736

A stored cross-site scripting XSS vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter...

5.4CVSS5.2AI score0.00398EPSS
Exploits1References1
Prion
Prion
added 2023/05/31 1:15 p.m.14 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter...

4.9CVSS5.2AI score0.00398EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2023/05/31 12:0 a.m.5 views

Dcat Admin 跨站脚本漏洞

Dcat Admin is a backend system builder based on the secondary development of laravel-admin by Jiang Qinghua, an individual developer. A security vulnerability exists in Dcat Admin v2.1.3-beta that could allow an attacker to execute arbitrary web script or HTML via URL parameter injection with a...

5.4CVSS6.1AI score0.00398EPSS
Exploits1References2
OSV
OSV
added 2023/05/31 12:0 a.m.15 views

CVE-2023-33736

A stored cross-site scripting XSS vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter...

5.4CVSS5.7AI score0.00398EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/05/31 12:0 a.m.10 views

CVE-2023-33736

A stored cross-site scripting XSS vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter...

5.5AI score0.00398EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/05/31 12:0 a.m.12 views

PT-2023-24463 · Unknown · Dcat-Admin

Name of the Vulnerable Software and Affected Versions: Dcat-Admin version 2.1.3-beta Description: A stored cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter. This enables attackers to potentially manipula...

5.4CVSS6.2AI score0.00398EPSS
Exploits1References8
CVE
CVE
added 2023/05/31 12:0 a.m.70 views

CVE-2023-33736

CVE-2023-33736 is a stored XSS vulnerability in Dcat-Admin v2.1.3-beta, exploitable via a crafted payload injected into a URL parameter. The impact is arbitrary web script/HTML execution as described; no explicit fix/version in the provided documents. Connected sources reference advisories and ex...

5.4CVSS5.2AI score0.00398EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/05/31 12:0 a.m.28 views

CVE-2023-33736

A stored cross-site scripting XSS vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter...

5.4AI score0.00398EPSS
Exploits1References1
Rows per page
Query Builder