Lucene search
K

5 matches found

Github Security Blog
Github Security Blog
added 2025/07/20 12:30 p.m.9 views

WebSSH Cross-site Scripting vulnerability

A vulnerability, which was classified as problematic, has been found in Huashengdun WebSSH up to 1.6.2. Affected by this issue is some unknown functionality of the component Login Page. The manipulation of the argument hostname/port leads to cross site scripting. The attack may be launched...

6.1CVSS3.9AI score0.00429EPSS
Exploits2References9Affected Software1
OSV
OSV
added 2025/07/20 12:30 p.m.6 views

GHSA-9CG4-9HV5-3376 WebSSH Cross-site Scripting vulnerability

A vulnerability, which was classified as problematic, has been found in Huashengdun WebSSH up to 1.6.2. Affected by this issue is some unknown functionality of the component Login Page. The manipulation of the argument hostname/port leads to cross site scripting. The attack may be launched...

5.3CVSS5.5AI score0.00429EPSS
Exploits2References9
SUSE CVE
SUSE CVE
added 2023/02/15 4:48 a.m.5 views

SUSE CVE-2017-7272

PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname argument, instead ...

5.4CVSS8AI score0.03514EPSS
Exploits2References6
OSV
OSV
added 2019/04/01 3:29 p.m.1 views

CVE-2018-13283

Lack of administrator control over security vulnerability in client.cgi in Synology SSL VPN Client before 1.2.5-0226 allows remote attackers to conduct man-in-the-middle attacks via the 1 command, 2 hostname, or 3 port parameter...

7.4CVSS5.8AI score0.01384EPSS
Exploits0References1
OSV
OSV
added 2017/03/27 5:59 p.m.3 views

UBUNTU-CVE-2017-7272

PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname argument, instead ...

7.4CVSS7.1AI score0.03514EPSS
Exploits2References2
Rows per page
Query Builder