Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-2702

Malicious code in bioql PyPI...

6.1CVSS5.9AI score0.0047EPSS
Exploits0References6
Prion
Prion
added 2023/10/27 8:15 p.m.15 views

Design/Logic Flaw

baserCMS is a website development framework with WebAPI that runs on PHP8 and CakePHP4. There is a XSS Vulnerability in Favorites Feature to baserCMS. This issue has been patched in version 4.8.0...

5.8CVSS6.1AI score0.0047EPSS
Exploits0References3
CVE
CVE
added 2023/10/27 7:30 p.m.68 views

CVE-2023-29009

CVE-2023-29009 affects baserCMS: a stored XSS vulnerability in the Favorites feature on baserCMS WebAPI (PHP8/CakePHP4). Root cause is XSS in the Favorites UI leading to script execution on vulnerable admin/user pages. Impact described in sources includes potential browser-execution of arbitrary ...

6.1CVSS5.9AI score0.0047EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/27 7:30 p.m.16 views

CVE-2023-29009 basercms XSS Vulnerability via Favorites Feature

baserCMS is a website development framework with WebAPI that runs on PHP8 and CakePHP4. There is a XSS Vulnerability in Favorites Feature to baserCMS. This issue has been patched in version 4.8.0...

6.1CVSS6AI score0.0047EPSS
Exploits0References3
OSV
OSV
added 2023/10/27 7:30 p.m.32 views

CVE-2023-29009 basercms XSS Vulnerability via Favorites Feature

baserCMS is a website development framework with WebAPI that runs on PHP8 and CakePHP4. There is a XSS Vulnerability in Favorites Feature to baserCMS. This issue has been patched in version 4.8.0...

6.1CVSS5.5AI score0.0047EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/10/27 12:0 a.m.4 views

baserCMS Cross-Site Scripting Vulnerability

baserCMS is an enterprise-level content management system CMS from the baserCMS team. A security vulnerability exists in baserCMS versions prior to 4.8.0, which stems from a cross-site scripting XSS vulnerability in the Favorites feature...

6.1CVSS5.7AI score0.0047EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2023/10/26 8:47 p.m.24 views

baserCMS Cross-site Scripting Vulnerability in Favorites Feature

There is a XSS Vulnerability in Favorites Feature to baserCMS. This is a vulnerability that needs to be addressed when the management system is used by an unspecified number of users. If you are eligible, please update to the new version as soon as possible. Target baserCMS 4.7.8 and earlier...

6.1CVSS6AI score0.0047EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/26 12:0 a.m.4 views

PT-2023-22083 · Cakephp +2 · Cakephp +2

Name of the Vulnerable Software and Affected Versions: baserCMS versions prior to 4.8.0 Description: The issue is a XSS Vulnerability in the Favorites Feature of baserCMS, a website development framework that runs on PHP8 and CakePHP4. This vulnerability allows malicious code to be executed in th...

6.1CVSS5.5AI score0.0047EPSS
Exploits0References10
Fedora
Fedora
added 2021/11/26 1:28 a.m.28 views

[SECURITY] Fedora 33 Update: vinagre-3.22.0-21.fc33

Vinagre is a VNC client for the GNOME desktop. With Vinagre you can have several connections open simultaneously, bookmark your servers thanks to the Favorites support, store the passwords in the GNOME keyring, and browse the network to look for VNC servers. Apart from the VNC protocol, vinagre...

8.8CVSS8.5AI score0.01553EPSS
Exploits0
OSV
OSV
added 2017/11/10 2:29 a.m.6 views

CVE-2017-16567

Persistent Cross-Site Scripting XSS vulnerability in Logitech Media Server 7.9.0, affecting the "Favorites" feature. This vulnerability allows remote attackers to inject and permanently store malicious JavaScript payloads, which are executed when users access the affected functionality...

5.4CVSS5.9AI score0.02239EPSS
Exploits3References1
Rows per page
Query Builder