Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.6 views

The vulnerability of the “Import from Excel” plugin, which exists due to the lack of protective measures for website structures, allows attackers to execute XSS attacks.

The vulnerability of the “Import from Excel” plugin exists due to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

5.3CVSS5.4AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.7 views

The vulnerability of the “Import from Excel. Upload product catalog 1C-Bitrix” plugin, which stems from the failure to take measures to neutralize special elements, allows attackers to execute arbitrary commands.

The vulnerability of the plugin “Import from Excel. Uploading product catalogs for 1C-Bitrix” is related to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

9CVSS5.9AI score
Exploits0References1Affected Software1
OSV
OSV
added 2023/11/30 12:15 p.m.4 views

CVE-2023-48289

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SpreadsheetConverter Import Spreadsheets from Microsoft Excel allows Stored XSS.This issue affects Import Spreadsheets from Microsoft Excel: from n/a through 10.1.3...

5.4CVSS7.3AI score0.00377EPSS
Exploits0References1
Rows per page
Query Builder