Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/05/30 2:55 p.m.35 views

CVE-2018-25423 Arm Whois 3.11 Denial of Service via Buffer Overflow

Arm Whois 3.11 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized input string. Attackers can paste a malicious buffer of 700 bytes into the IP address or domain input field to trigger a denial of service condition...

6.9CVSS0.0014EPSS
Exploits0References4
NVD
NVD
added 2024/04/17 1:15 p.m.11 views

CVE-2024-30952

A stored cross-site scripting XSS vulnerability in PESCMS-TEAM v2.3.6 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the domain input field under /youdoamin/?g=Team&m=Setting&a=action...

6.1CVSS5.4AI score0.00327EPSS
Exploits0References1
CVE
CVE
added 2024/04/17 12:0 a.m.62 views

CVE-2024-30952

PESCMS-TEAM v2.3.6 contains a stored XSS vulnerability exploitable via a crafted payload in the domain input field at /youdoamin/?g=Team&m=Setting&a=action. Affected component: domain input handling in the API endpoint; impact: execution of arbitrary web scripts/HTML. Some sources mention a tempo...

6.1CVSS5.6AI score0.00327EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/17 12:0 a.m.10 views

CVE-2024-30952

A stored cross-site scripting XSS vulnerability in PESCMS-TEAM v2.3.6 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the domain input field under /youdoamin/?g=Team&m=Setting&a=action...

5.6AI score0.00327EPSS
Exploits0References1
Rows per page
Query Builder