Lucene search
K

16600 matches found

Cvelist
Cvelist
added 2024/11/15 4:2 p.m.24 views

CVE-2022-20634 Cisco Enterprise Chat and Email Open Redirect Vulnerability

A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. This vulnerability is due to improper input validation of the URL parameters in an HTTP request that is sent to an affected system. An...

4.7CVSS0.00572EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/15 12:0 a.m.3 views

PT-2024-8888

Name of the Vulnerable Software and Affected Versions: PHP versions 8.1. before 8.1.31 PHP versions 8.2. before 8.2.26 PHP versions 8.3. before 8.3.14 Description: The issue is related to the configuration of the request fulluri option in PHP, which can lead to HTTP request smuggling when using...

9.8CVSS7.8AI score0.02286EPSS
Exploits11References113
NVD
NVD
added 2024/11/14 6:15 p.m.7 views

CVE-2024-48284

A Reflected Cross-Site Scripting XSS vulnerability was found in the /search-result.php page of the PHPGurukul User Registration & Login and User Management System 3.2. This vulnerability allows remote attackers to execute arbitrary scripts via the searchkey parameter in a POST HTTP request...

5.4CVSS0.00458EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/14 3:57 p.m.31 views

Security Bulletin: IBM Sterling B2B Integrator is affected by multiple vulnerabilities in Eclipse Jetty

Summary IBM Sterling B2B Integrator is affected by multiple vulnerabilities in Eclipse Jetty Vulnerability Details CVEID:CVE-2023-41900 DESCRIPTION: Eclipse Jetty could allow a remote authenticated attacker to bypass security restrictions, caused by improper authentication validation when using t...

5.3CVSS6.6AI score0.01069EPSS
Exploits2Affected Software1
NVD
NVD
added 2024/11/14 2:15 p.m.31 views

CVE-2024-50841

A Stored Cross-Site Scripting XSS vulnerability was found in /admin/calendarofevents.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the datestart, dateend, and title parameters...

5.4CVSS0.0038EPSS
Exploits1References1
CVE
CVE
added 2024/11/14 12:0 a.m.47 views

CVE-2024-50838

A Stored Cross-Site Scripting (XSS) vulnerability affects Kashipara E-learning Management System Project 1.0, located in /admin/department.php. The flaw allows remote attackers to inject and execute arbitrary scripts via the d and pi parameters. According to the connected documents, the issue is ...

5.4CVSS5.7AI score0.00462EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/11/14 12:0 a.m.15 views

CVE-2024-50839

A Stored Cross-Site Scripting XSS vulnerability was found in /admin/addsubject.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the subjectcode and title parameters...

0.0038EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/11/14 12:0 a.m.27 views

CVE-2024-50840

A Stored Cross-Site Scripting XSS vulnerability was found in /admin/class.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the classname parameter...

0.00407EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/11/14 12:0 a.m.16 views

CVE-2024-50842

A Stored Cross-Site Scripting XSS vulnerability was found in /admin/schoolyear.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the schoolyear parameter...

0.0038EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/11/14 12:0 a.m.13 views

CVE-2024-50841

A Stored Cross-Site Scripting XSS vulnerability was found in /admin/calendarofevents.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the datestart, dateend, and title parameters...

0.0038EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/11/14 12:0 a.m.12 views

CVE-2024-48284

A Reflected Cross-Site Scripting XSS vulnerability was found in the /search-result.php page of the PHPGurukul User Registration & Login and User Management System 3.2. This vulnerability allows remote attackers to execute arbitrary scripts via the searchkey parameter in a POST HTTP request...

6.4AI score0.00458EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2024/11/14 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-7106-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.3CVSS7.4AI score0.05972EPSS
Exploits2References2
CVE
CVE
added 2024/11/14 12:0 a.m.66 views

CVE-2024-50837

CVE-2024-50837 pertains to the Kashipara E-learning Management System Project 1.0. It describes a stored XSS vulnerability in the /admin/admin_user.php endpoint where an attacker can inject scripts via the firstname and username parameters. The CVSS 3.1 base score is 5.4 (Medium) with network att...

5.4CVSS5.7AI score0.00462EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.11 views

Oracle Linux 8 : libsoup (ELSA-2024-9573)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-9573 advisory. - Backport upstream patch for CVE-2024-52530 - HTTP request smuggling via stripping null bytes from the ends of header names - Backport upstream patch...

7.5CVSS7AI score0.00933EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2024/11/13 6:22 p.m.22 views

Important: Red Hat Security Advisory: libsoup security update

An update for libsoup is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS6.8AI score0.00933EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2024/11/13 4:56 p.m.22 views

Important: Red Hat Security Advisory: libsoup security update

An update for libsoup is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS6.8AI score0.00793EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/11/13 4:30 p.m.15 views

Important: Red Hat Security Advisory: libsoup security update

An update for libsoup is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS6.8AI score0.00793EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/11/13 3:54 p.m.16 views

Important: Red Hat Security Advisory: libsoup security update

An update for libsoup is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as...

7.5CVSS6.8AI score0.00793EPSS
Exploits1References2
OSV
OSV
added 2024/11/13 3:42 p.m.15 views

CVE-2024-52298 macro-pdfviewer's preview in WYSIWYG editor allows accessing any PDF document as the last author

macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. The PDF Viewer macro allows an attacker to view any attachment using the "Delegate my view right" feature as long as the attacker can view a page whose last author has access to the attachment. For this, the attacker only needs...

7.5CVSS6.5AI score0.0066EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2024/11/13 3:31 p.m.27 views

Important: Red Hat Security Advisory: libsoup security update

An update for libsoup is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS6.8AI score0.00933EPSS
Exploits1References3
Rows per page
Query Builder