Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/02/24 7:40 a.m.20 views

CVE-2025-40538 SolarWinds Serv-U Broken Access Control Remote Code Execution Vulnerability

A broken access control vulnerability exists in Serv-U which when exploited, gives a malicious actor the ability to create a system admin user and execute arbitrary code as a privileged account via domain admin or group admin privileges. This issue requires administrative privileges to abuse. On...

9.1CVSS0.00496EPSS
Exploits0References2
NVD
NVD
added 2014/03/14 4:55 p.m.31 views

CVE-2013-1822

Multiple cross-site scripting XSS vulnerabilities in ownCloud 4.5.x before 4.5.8 allow remote authenticated users with administrator privileges to inject arbitrary web script or HTML via the 1 quota parameter to /core/settings/ajax/setquota.php, or remote authenticated users with group admin...

2.1CVSS5.4AI score0.00742EPSS
Exploits0References1
Prion
Prion
added 2014/03/14 4:55 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in ownCloud 4.5.x before 4.5.8 allow remote authenticated users with administrator privileges to inject arbitrary web script or HTML via the 1 quota parameter to /core/settings/ajax/setquota.php, or remote authenticated users with group admin...

2.1CVSS5.7AI score0.00742EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2014/03/14 4:0 p.m.30 views

CVE-2013-1822

Multiple cross-site scripting XSS vulnerabilities in ownCloud 4.5.x before 4.5.8 allow remote authenticated users with administrator privileges to inject arbitrary web script or HTML via the 1 quota parameter to /core/settings/ajax/setquota.php, or remote authenticated users with group admin...

5.4AI score0.00742EPSS
Exploits0References1
Rows per page
Query Builder