Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-21612

Malware in sbrugna...

5.4CVSS5.6AI score0.01271EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:55 a.m.10 views

CVE-2024-28678

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via the component /dede/articledescriptionmain.php...

6.3CVSS6.5AI score0.00233EPSS
Exploits1References1
NVD
NVD
added 2024/11/05 7:15 p.m.21 views

CVE-2024-51379

Stored Cross-Site Scripting XSS vulnerability discovered in JATOS v3.9.3. The vulnerability exists in the description component of the study section, where an attacker can inject JavaScript into the description field. This allows for the execution of malicious scripts when an admin views the...

8.4CVSS0.00591EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/11/05 12:0 a.m.9 views

CVE-2024-51379

Stored Cross-Site Scripting XSS vulnerability discovered in JATOS v3.9.3. The vulnerability exists in the description component of the study section, where an attacker can inject JavaScript into the description field. This allows for the execution of malicious scripts when an admin views the...

5.6AI score0.00591EPSS
Exploits1References1
CVE
CVE
added 2024/11/05 12:0 a.m.62 views

CVE-2024-51379

CVE-2024-51379: Stored XSS in JATOS v3.9.3 (description component of the study section) enables an attacker to inject JavaScript that executes when an admin views the description, potentially leading to account takeover; description notes the vulnerability but does not specify a patch in the prov...

8.4CVSS5.6AI score0.00591EPSS
Exploits1References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/06/25 12:0 a.m.5 views

The vulnerability of the className and Description components in the CMS system’s Typesetter allows attackers to perform cross-site scripting attacks.

The vulnerability of the className and Description components in the CMS system’s Typesetter is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS6AI score0.00819EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder