Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2025/05/16 12:0 a.m.6 views

PT-2025-21644 · Pnetlab · Pnetlab

Name of the Vulnerable Software and Affected Versions: PNETLab version 4.2.10 Description: The issue arises from the application's failure to properly sanitize user inputs in its file access mechanisms, allowing attackers to perform directory traversal by manipulating file paths in HTTP requests...

8.7CVSS6.3AI score0.00788EPSS
Exploits0References7
Veracode
Veracode
added 2025/03/18 2:47 a.m.7 views

Cross-Site Scripting (XSS)

org.apache.felix, org.apache.felix.http.webconsoleplugin is vulnerable to cross-site scripting XSS. The vulnerability is due to improper neutralization of user input during web page generation, allowing an attacker to inject and execute malicious scripts in a victim’s browser through improperly...

5.6CVSS6.2AI score0.00512EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2019/04/09 9:29 p.m.17 views

Cross site scripting

A Cross-site Scripting XSS vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0866, CVE-2019-0867,...

4.3CVSS5.9AI score0.02626EPSS
Exploits0References2Affected Software2
OpenVAS
OpenVAS
added 2015/01/22 12:0 a.m.37 views

Vaadin Framework < 6.6.7 / 6.7.0 Multiple Vulnerabilities

Vaadin Framework is prone to multiple cross-site scripting, information disclosure, and security bypass vulnerabilities because the application fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2015 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced...

5.3AI score
Exploits0References3
exploitpack
exploitpack
added 2006/06/13 12:0 a.m.8 views

Simpnews 2.x - Wap_short_news.php Remote File Inclusion

Simpnews 2.x - Wapshortnews.php Remote File Inclusion source: https://www.securityfocus.com/bid/18410/info Simpnews is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2005/11/28 12:0 a.m.10 views

Netzbrett 1.5.1 - P_Entry SQL Injection

Netzbrett 1.5.1 - PEntry SQL Injection source: https://www.securityfocus.com/bid/15593/info Netzbrett is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation cou...

8.6AI score
Exploits0
Exploit DB
Exploit DB
added 2005/04/20 12:0 a.m.27 views

Ocean12 Calendar Manager 1.0 - Admin Form SQL Injection

source: https://www.securityfocus.com/bid/13279/info Ocean12 Calendar Manager is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromis...

7.4AI score
Exploits0
Rows per page
Query Builder