CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

Veracode•added 2024/08/27 7:12 a.m.•9 views

Cross Site Scripting

fastapi-admin is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to insufficient validation and sanitization of the Product Name parameter in the Create Product function, which allows attackers to inject and execute arbitrary web scripts or HTML...

6.1CVSS6.5AI score0.0027EPSS

Exploits0References3Affected Software1

OSV•added 2024/08/26 4:15 p.m.•2 views

CVE-2024-42818

A cross-site scripting XSS vulnerability in the Config-Create function of fastapi-admin pro v0.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Product Name parameter...

6.1CVSS5.9AI score0.0027EPSS

Exploits0References2

OSV•added 2024/08/26 4:15 p.m.•2 views

CVE-2024-42816

A cross-site scripting XSS vulnerability in the Create Product function of fastapi-admin pro v0.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Product Name parameter...

6.1CVSS5.9AI score0.0027EPSS

Exploits0References2

NVD•added 2024/08/26 4:15 p.m.•29 views

CVE-2024-42816

6.1CVSS0.0027EPSS

Exploits0References2

NVD•added 2024/08/26 4:15 p.m.•11 views

CVE-2024-42818

6.1CVSS0.0027EPSS

Exploits0References2

Vulnrichment•added 2024/08/26 12:0 a.m.•12 views

CVE-2024-42818

5.8AI score0.0027EPSS

Exploits0References2

CNNVD•added 2024/08/26 12:0 a.m.•3 views

FastAPI Admin 安全漏洞

FastAPI Admin is FastAPI Admin open source a fast administration dashboard based on FastAPI and TortoiseORM. A security vulnerability exists in FastAPI Admin version v0.1.4, which stems from the presence of a cross-site scripting XSS vulnerability that allows an attacker to execute arbitrary web...

6.1CVSS5.5AI score0.0027EPSS

Exploits0References3

CNNVD•added 2024/08/26 12:0 a.m.•2 views

FastAPI Admin 安全漏洞

6.1CVSS5.5AI score0.0027EPSS

Exploits0References3

CVE•added 2024/08/26 12:0 a.m.•49 views

CVE-2024-42818

CVE-2024-42818 is a cross-site scripting (XSS) vulnerability in the Config-Create function of fastapi-admin pro v0.1.4, allowing injection of arbitrary scripts/HTML via the Product Name parameter. Multiple connected sources corroborate the issue and its scope. Public data do not specify a confirm...

6.1CVSS5.8AI score0.0027EPSS

Exploits0References2

Cvelist•added 2024/08/26 12:0 a.m.•33 views

CVE-2024-42816

0.0027EPSS

Exploits0References2

Positive Technologies•added 2024/08/26 12:0 a.m.•2 views

PT-2024-30175 · Unknown · Fastapi-Admin

Name of the Vulnerable Software and Affected Versions: fastapi-admin pro version 0.1.4 Description: A cross-site scripting XSS vulnerability in the Create Product function allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Product Name parameter...

6.1CVSS6.1AI score0.0027EPSS

Exploits0References9

Cvelist•added 2024/08/26 12:0 a.m.•28 views

CVE-2024-42818

0.0027EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by