19 matches found
EUVD-2024-25889
Malicious code in bioql PyPI...
EUVD-2024-25891
Malicious code in bioql PyPI...
CVE-2024-28803
Cross-site scripting XSS vulnerability in Italtel S.p.A. i-MCS NFV v.12.1.0-20211215 allows unauthenticated remote attackers to inject arbitrary web script or HTML into HTTP/POST parameter...
CVE-2024-28803
CVE-2024-28803 is an XSS vulnerability affecting Italtel S.p.A. i-MCS NFV v.12.1.0-20211215. According to the provided documents, unauthenticated remote attackers can inject arbitrary web script or HTML via HTTP POST parameters. The vulnerability is described with no explicit exploit details or a...
CVE-2024-28803
Cross-site scripting XSS vulnerability in Italtel S.p.A. i-MCS NFV v.12.1.0-20211215 allows unauthenticated remote attackers to inject arbitrary web script or HTML into HTTP/POST parameter...
CVE-2024-28806
An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. Remote unauthenticated attackers can upload files at an arbitrary path...
CVE-2024-28804
An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. Stored Cross-site scripting XSS can occur via POST...
CVE-2024-28805
An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. There is Incorrect Access Control...
CVE-2024-28804
An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. Stored Cross-site scripting XSS can occur via POST...
CVE-2024-28806
CVE-2024-28806 affects Italtel i-MCS NFV 12.1.0-20211215. The issue allows remote unauthenticated attackers to upload files at an arbitrary path, with a high integrity impact and no confidentiality or availability impact per CVSS. No explicit fix version is provided in the documents; some sources...
CVE-2024-28805
This entry documents CVE-2024-28805 affecting Italtel i-MCS NFV version 12.1.0-20211215. Issue: Incorrect Access Control. Root cause and product context are stated in the sources; affected component/version are specified. CVSS details indicate Network attack with high impact on confidentiality an...
CVE-2024-28804
CVE-2024-28804: Italtel i-MCS NFV 12.1.0-20211215 is affected by a stored XSS via POST in the web interface. The vulnerability arises in POST handling, enabling script execution in affected user sessions (impact: L confidentiality, I, A). CVSS v3.1 base score 7.1 (Network attack, low complexity, ...
CVE-2024-28804
An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. Stored Cross-site scripting XSS can occur via POST...
CVE-2024-28805
An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. There is Incorrect Access Control...
CVE-2024-28806
An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. Remote unauthenticated attackers can upload files at an arbitrary path...
PT-2024-22578 · Italtel · Italtel I-Mcs Nfv
Name of the Vulnerable Software and Affected Versions: Italtel i-MCS NFV version 12.1.0-20211215 Description: An issue allows remote unauthenticated attackers to upload files at an arbitrary path. Recommendations: For Italtel i-MCS NFV version 12.1.0-20211215, consider restricting file upload...
CVE-2024-28804
An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. Stored Cross-site scripting XSS can occur via POST...
CVE-2024-28806
An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. Remote unauthenticated attackers can upload files at an arbitrary path...
CVE-2024-28805
An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. There is Incorrect Access Control...