CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A Stored Cross-Site Scripting XSS vulnerability exists in OpenKM version 7.1.40 dbb6e88 With Professional Extension that allows an authenticated user to upload a note on a file which acts as a stored XSS payload. Any user who opens the note of a document file will trigger the XSS...

5.4CVSS5.8AI score0.03697EPSS

Exploits2References1

NVD•added 2014/03/09 1:16 p.m.•6 views

CVE-2013-6232

Cross-site scripting XSS vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via a document note in the execution page...

3.5CVSS5.2AI score0.00871EPSS

Exploits7References5

Prion•added 2014/03/09 1:16 p.m.•8 views

Cross site scripting

Cross-site scripting XSS vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via a document note in the execution page...

3.5CVSS5.7AI score0.00871EPSS

Exploits7References5Affected Software1

Cvelist•added 2014/03/07 8:0 p.m.•16 views

CVE-2013-6232

Cross-site scripting XSS vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via a document note in the execution page...

5.2AI score0.00871EPSS

Exploits7References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by