Lucene search
K

5 matches found

Github Security Blog
Github Security Blog
added 2022/05/17 3:49 a.m.33 views

Eugene Pankov Ajenti Cross-site scripting Vulnerabilities

Multiple cross-site scripting XSS vulnerabilities in the responderror function in routing.py in Eugene Pankov Ajenti before 1.2.21.7 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 resources.js or 2 resources.css in ajenti:static/, related to the traceback page...

4.3CVSS6AI score0.02282EPSS
Exploits1References8Affected Software1
OSV
OSV
added 2022/05/17 3:49 a.m.19 views

GHSA-2CH8-F849-PJG3 Eugene Pankov Ajenti Cross-site scripting Vulnerabilities

Multiple cross-site scripting XSS vulnerabilities in the responderror function in routing.py in Eugene Pankov Ajenti before 1.2.21.7 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 resources.js or 2 resources.css in ajenti:static/, related to the traceback page...

6.9CVSS5.4AI score0.02282EPSS
Exploits1References8
NVD
NVD
added 2014/04/30 11:58 p.m.25 views

CVE-2014-2260

Cross-site scripting XSS vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via the command field in the Cron functionality...

3.5CVSS5.4AI score0.01487EPSS
Exploits1References5
Prion
Prion
added 2014/04/30 11:58 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via the command field in the Cron functionality...

3.5CVSS5.8AI score0.01487EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2014/04/30 10:0 p.m.48 views

CVE-2014-2260

The provided Connected documents confirm CVE-2014-2260 affects Ajenti 1.2.13, with an XSS vulnerability in plugins/main/content/js/ajenti.coffee that allows remote authenticated users to inject arbitrary web script or HTML via the command field in Cron. The root cause is inadequate input handling...

3.5CVSS5.5AI score0.01487EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder