Lucene search
K

15 matches found

Packet Storm News
Packet Storm News
added 2026/03/11 12:0 a.m.4 views

Microsoft Graph Enterprise Intelligence Collector

This Metasploit auxiliary module interacts with the Microsoft Graph API to perform enterprise intelligence collection. It supports authentication using Azure AD application credentials or an existing access token and enables enumeration of Azure users, SharePoint sites, OneDrive files, and Exchan...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-37277

Malicious code in bioql PyPI...

9CVSS9AI score0.00756EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/08/12 12:0 a.m.5 views

Intel AI for Enterprise Retrieval-augmented Generation 代码问题漏洞

Intel AI for Enterprise Retrieval-augmented Generation is a technology framework for enhancing the accuracy and relevance of Large Language Model LLM responses by incorporating an external knowledge base. An uncontrolled search path vulnerability exists in Intel AI for Enterprise...

6.7CVSS6.7AI score0.00118EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:54 p.m.7 views

CVE-2022-34322

Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerable features. An issue is present in the Notify Users About Modification me...

9CVSS6.3AI score0.00756EPSS
Exploits1References1
NVD
NVD
added 2023/01/01 8:15 a.m.26 views

CVE-2022-34322

Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerable features. An issue is present in the Notify Users About Modification me...

9CVSS8.9AI score0.00756EPSS
Exploits1References1
OSV
OSV
added 2023/01/01 8:15 a.m.2 views

CVE-2022-34322

Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerable features. An issue is present in the Notify Users About Modification me...

9CVSS5.9AI score0.00756EPSS
Exploits1References1
Prion
Prion
added 2023/01/01 8:15 a.m.16 views

Cross site scripting

Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerable features. An issue is present in the Notify Users About Modification me...

6CVSS8.6AI score0.00756EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/01/01 12:0 a.m.4 views

PT-2023-13357 · Sage · Sage Enterprise Intelligence

Name of the Vulnerable Software and Affected Versions: Sage Enterprise Intelligence version 2021 R1.1 Description: Multiple XSS issues were discovered that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerabl...

9CVSS6.4AI score0.00756EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/01/01 12:0 a.m.5 views

Sage Enterprise Intelligence 跨站脚本漏洞

Sage Enterprise Intelligence is a fully integrated business intelligence and data management solution from Sage UK. A security vulnerability exists in Sage Enterprise Intelligence version 2021 R1.1, which stems from the presence of stored XSS that allows an attacker to send a malicious notificati...

9CVSS8.3AI score0.00756EPSS
Exploits1References2
CVE
CVE
added 2023/01/01 12:0 a.m.63 views

CVE-2022-34322

CVE-2022-34322 : Sage Enterprise Intelligence 2021 R1.1 contains multiple XSS bugs. One stored XSS via the Notify Users About Modification/Notifications features allows an authenticated attacker to execute JavaScript in other users’ browsers; also a self-XSS exists in the Favorites tab where a na...

9CVSS8.7AI score0.00756EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/01 12:0 a.m.10 views

CVE-2022-34322

Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerable features. An issue is present in the Notify Users About Modification me...

6.3AI score0.00756EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/01/01 12:0 a.m.32 views

CVE-2022-34322

Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an attacker to execute JavaScript code in the context of users' browsers. The attacker needs to be authenticated to reach the vulnerable features. An issue is present in the Notify Users About Modification me...

8.9AI score0.00756EPSS
Exploits1References1
CNVD
CNVD
added 2017/05/14 12:0 a.m.1 views

Reflected Cross-Site Scripting Vulnerability in the usbkey_Serial Parameter of the Enterprise Intelligence Network Management System

Enterprise Intelligence products are intranet management expert services. A reflective cross-site scripting vulnerability exists in the usbkeySerial parameter of the Enterprise Intelligence network management system. It allows an attacker to construct an XSS statement to directly trigger a pop-up...

5.8AI score
Exploits0
CNVD
CNVD
added 2016/09/20 12:0 a.m.0 views

Multiple File Containment Vulnerabilities in Enterprise Intelligence Series Internet Behavior Management Appliances

Enterprise Intelligence series of Internet behavior management equipment is dedicated to preventing the malicious dissemination of illegal information, avoiding the leakage of state secrets, business information and scientific research results; and real-time monitoring and management of network...

6.8AI score
Exploits0References1
CNVD
CNVD
added 2015/09/07 12:0 a.m.2 views

SQL Injection Vulnerability in Enterprise Intelligence's Network Office Management Expert System

Network Office Management Expert System is a network office system with a great deal of specialized knowledge. A SQL injection vulnerability exists in the Network Office Management Specialist System, which is owned by Enterprise Intelligence. It allows attackers to exploit the vulnerability to ga...

7.9AI score
Exploits0References1
Rows per page
Query Builder