Lucene search
K

2664 matches found

ATTACKERKB
ATTACKERKB
added 2023/09/13 10:15 p.m.2 views

CVE-2023-41154

A Stored Cross-Site Scripting XSS vulnerability in the scheduled cron jobs tab in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML via the value field parameter while creating a new environment variable...

5.4CVSS5.9AI score0.00397EPSS
Exploits0References3
NVD
NVD
added 2023/09/13 10:15 p.m.17 views

CVE-2023-41154

A Stored Cross-Site Scripting XSS vulnerability in the scheduled cron jobs tab in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML via the value field parameter while creating a new environment variable...

5.4CVSS5.2AI score0.00397EPSS
Exploits0References2
Prion
Prion
added 2023/09/13 10:15 p.m.26 views

Cross site scripting

A Stored Cross-Site Scripting XSS vulnerability in the scheduled cron jobs tab in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML via the value field parameter while creating a new environment variable...

4.9CVSS5.2AI score0.00397EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/09/13 12:0 a.m.21 views

CVE-2023-41154

A Stored Cross-Site Scripting XSS vulnerability in the scheduled cron jobs tab in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML via the value field parameter while creating a new environment variable...

5.4AI score0.00397EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/09/13 12:0 a.m.18 views

CVE-2023-41154

A Stored Cross-Site Scripting XSS vulnerability in the scheduled cron jobs tab in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML via the value field parameter while creating a new environment variable...

5.5AI score0.00397EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/09/13 12:0 a.m.4 views

Fortinet FortiClientEms Information Disclosure Vulnerability

Fortinet FortiClientEms is a centralized central management system from Fortinet, Inc. A security vulnerability exists in Fortinet FortiClientEms that originates from an environment variable information leak in the login page. Affected products and versions: FortiClientEMS versions 7.0.6 through...

5.3CVSS6.6AI score0.00704EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/09/13 12:0 a.m.7 views

PT-2023-27829 · Usermin · Usermin

Name of the Vulnerable Software and Affected Versions: Usermin version 2.000 Description: A Stored Cross-Site Scripting XSS issue exists in the scheduled cron jobs tab, allowing remote attackers to inject arbitrary web script or HTML via the value field parameter when creating a new environment...

5.4CVSS5.4AI score0.00397EPSS
Exploits0References5
NVD
NVD
added 2023/09/08 12:15 p.m.25 views

CVE-2023-4807

Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platform when running on newer X8664 processors supporting the AVX512-IFMA instructions. Impact summary: If in an application that uses...

7.8CVSS7.9AI score0.00862EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/09/08 11:1 a.m.24 views

CVE-2023-4807 POLY1305 MAC implementation corrupts XMM registers on Windows

Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platform when running on newer X8664 processors supporting the AVX512-IFMA instructions. Impact summary: If in an application that uses...

8.1AI score0.00862EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/08/30 2:14 a.m.1 views

SUSE CVE-2023-40590

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS6.9AI score0.00465EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2023/08/29 11:33 p.m.56 views

GitPython untrusted search path on Windows systems leading to arbitrary code execution

Summary When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment see big warning in https://docs.python.org/3/library/subprocess.htmlpopen-constructor. GitPython defaults to use the git command, if a user runs GitPython from a repo has a...

7.8CVSS7.1AI score0.00465EPSS
Exploits1References9Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2023/08/29 12:0 a.m.6 views

VulnCheck KEV: CVE-2023-36845

Juniper Junos OS on EX Series and SRX Series contains a PHP external variable modification vulnerability that allows an unauthenticated, network-based attacker to control an important environment variable. Using a crafted request, which sets the variable PHPRC, an attacker is able to modify the...

9.8CVSS7AI score0.93546EPSS
Exploits25References1
NVD
NVD
added 2023/08/28 6:15 p.m.12 views

CVE-2023-40590

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS7.6AI score0.00465EPSS
Exploits1References2
PyPA
PyPA
added 2023/08/28 6:15 p.m.6 views

PYSEC-2023-161

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS7.6AI score0.00465EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/08/28 6:15 p.m.5 views

PYSEC-2023-161

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS7.1AI score0.00465EPSS
Exploits1References2
AlpineLinux
AlpineLinux
added 2023/08/28 5:24 p.m.33 views

CVE-2023-40590

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS6.8AI score0.00465EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2023/08/28 5:24 p.m.33 views

CVE-2023-40590

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS7.4AI score0.00465EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2023/08/28 12:0 a.m.3 views

PT-2023-4751 · Gitpython +1 · Gitpython +1

Name of the Vulnerable Software and Affected Versions: GitPython affected versions not specified Description: The issue is related to how Python interacts with Windows systems, specifically when resolving a program. GitPython defaults to use the git command, and if a user runs it from a repositor...

8.6CVSS6.1AI score0.01012EPSS
Exploits2References33
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/28 12:0 a.m.30 views

Untrusted Search Path

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS6.7AI score0.00465EPSS
Exploits1References4Affected Software1
GithubExploit
GithubExploit
added 2023/08/25 7:28 a.m.219 views

Exploit for PHP External Variable Modification in Juniper Junos

CVE-2023-36844 , CVE-2023-36845 , CVE-2023-36846 , CVE-2023-36...

9.8CVSS8.7AI score0.94205EPSS
Exploits28
Rows per page
Query Builder