Lucene search
K

5 matches found

OSV
OSV
added 2026/02/18 10:16 p.m.6 views

CVE-2019-25397

IPFire 2.21 Core Update 127 contains multiple reflected cross-site scripting vulnerabilities in the hosts.cgi script that allow attackers to inject malicious scripts through unvalidated parameters. Attackers can submit POST requests with script payloads in the KEY1, IP, HOST, or DOM parameters to...

6.1CVSS5.9AI score0.00242EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/02/18 8:59 p.m.24 views

CVE-2019-25397 IPFire 2.21 Core Update 127 Cross-Site Scripting via hosts.cgi

IPFire 2.21 Core Update 127 contains multiple reflected cross-site scripting vulnerabilities in the hosts.cgi script that allow attackers to inject malicious scripts through unvalidated parameters. Attackers can submit POST requests with script payloads in the KEY1, IP, HOST, or DOM parameters to...

6.1CVSS0.00242EPSS
Exploits1References4
NVD
NVD
added 2026/02/16 6:19 p.m.11 views

CVE-2019-25381

Smoothwall Express 3.1-SP4-polar-x8664-update9 contains multiple reflected cross-site scripting vulnerabilities in the hosts.cgi script that allow attackers to inject malicious scripts through unvalidated parameters. Attackers can submit POST requests to the hosts.cgi endpoint with script payload...

6.1CVSS0.00225EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/02/16 5:4 p.m.4 views

CVE-2019-25381

Smoothwall Express 3.1-SP4-polar-x8664-update9 contains multiple reflected cross-site scripting vulnerabilities in the hosts.cgi script that allow attackers to inject malicious scripts through unvalidated parameters. Attackers can submit POST requests to the hosts.cgi endpoint with script payload...

6.1CVSS5.6AI score0.00225EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2020/03/19 6:15 p.m.5 views

CVE-2019-16065

A remote SQL injection web vulnerability was discovered in the Enigma NMS 65.0.0 and prior web application that allows an attacker to execute SQL commands to expose and compromise the web server, expose database tables and values, and potentially execute system-based commands as the mysql user...

8.8CVSS7.5AI score0.0281EPSS
Exploits5References1
Rows per page
Query Builder