14 matches found
EUVD-2021-15993
Malware in sbrugna...
EUVD-2020-5881
Malware in sbrugna...
CVE-2020-13639
A stored XSS vulnerability was discovered in the ECT Provider in OutSystems before 2020-09-04, affecting generated applications. It could allow an unauthenticated remote attacker to craft and store malicious Feedback content into /ECTProvider/, such that when the content is viewed it can only be...
CVE-2020-13639
A stored XSS vulnerability was discovered in the ECT Provider in OutSystems before 2020-09-04, affecting generated applications. It could allow an unauthenticated remote attacker to craft and store malicious Feedback content into /ECTProvider/, such that when the content is viewed it can only be...
Cross site scripting
A stored XSS vulnerability was discovered in the ECT Provider in OutSystems before 2020-09-04, affecting generated applications. It could allow an unauthenticated remote attacker to craft and store malicious Feedback content into /ECTProvider/, such that when the content is viewed it can only be...
CVE-2020-13639
A stored XSS vulnerability was discovered in the ECT Provider in OutSystems before 2020-09-04, affecting generated applications. It could allow an unauthenticated remote attacker to craft and store malicious Feedback content into /ECTProvider/, such that when the content is viewed it can only be...
CVE-2020-13639
CVE-2020-13639 describes a stored XSS in OutSystems’ ECT Provider that affects generated applications. An unauthenticated attacker could store malicious Feedback content in /ECT_Provider/, leading to attacker‑controlled JavaScript executing in the administrator’s browser when viewed by admins. Re...
Outsystems OutSystems Platform 跨站脚本漏洞
Outsystems OutSystems Platform is a set of enterprise-level low-code development platform from OutSystems Outsystems. The platform is primarily used for the visual development of applications. A cross-site scripting vulnerability exists in OutSystems Platform that stems from a stored XSS...
OutSystems Platform Server Server Cross-Site Request Forgery Vulnerability
Outsystems OutSystems Platform is a set of enterprise-level low-code development platform from OutSystems Outsystems. The platform is mainly used for the visual development of applications. A server cross-site request forgery vulnerability exists in OutSystems Platform Server, which can be...
CVE-2021-29357
The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 and LifeTime management console before 11.7.0 allows SSRF for arbitrary outbound HTTP requests...
CVE-2021-29357
The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 and LifeTime management console before 11.7.0 allows SSRF for arbitrary outbound HTTP requests...
Server side request forgery (ssrf)
The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 and LifeTime management console before 11.7.0 allows SSRF for arbitrary outbound HTTP requests...
CVE-2021-29357
The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 and LifeTime management console before 11.7.0 allows SSRF for arbitrary outbound HTTP requests...
CVE-2021-29357
The CVE-2021-29357 issue is tied to OutSystems Platform Server’s ECT Provider component. Affected versions : OutSystems Platform Server 10 prior to 10.0.1104.0 and 11 prior to 11.9.0, as well as LifeTime management console prior to 11.7.0. Vulnerability : Server-side request forgery (SSRF) enable...