Lucene search
K

723 matches found

Openbugbounty
Openbugbounty
added 2023/02/12 9:44 a.m.15 views

wws-ceramic.com Cross Site Scripting vulnerability OBB-3192124

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/01/12 5:46 a.m.15 views

gatchfanfic.com Cross Site Scripting vulnerability OBB-3144399

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/12/20 12:0 a.m.8 views

PT-2022-27696 · Baijiacms · Baijiacms

Name of the Vulnerable Software and Affected Versions: baijiacms version v4 Description: A Remote Code Execution RCE vulnerability was found in includes/baijiacms/common.inc.php. Recommendations: For baijiacms version v4, consider restricting access to the includes/baijiacms/common.inc.php file...

8.8CVSS8.9AI score0.21987EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2022/12/08 12:0 a.m.13 views

WordPress 3.4.x < 3.4.2 XSS / Access Restriction Bypass Vulnerability

WordPress is prone to a cross-site scripting XSS and access restriction bypass vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-late...

2.6CVSS5.7AI score0.03103EPSS
Exploits0References2
OSV
OSV
added 2022/12/07 4:15 a.m.6 views

CVE-2022-43660

Improper neutralization of Server-Side Includes SSW within a web page in Movable Type series allows a remote authenticated attacker with Privilege of 'Manage of Content Types' may execute an arbitrary Perl script and/or an arbitrary OS command. Affected products/versions are as follows: Movable...

7.2CVSS5.9AI score0.00972EPSS
Exploits0References2
NVD
NVD
added 2022/12/07 4:15 a.m.16 views

CVE-2022-43660

Improper neutralization of Server-Side Includes SSW within a web page in Movable Type series allows a remote authenticated attacker with Privilege of 'Manage of Content Types' may execute an arbitrary Perl script and/or an arbitrary OS command. Affected products/versions are as follows: Movable...

7.2CVSS0.00972EPSS
Exploits0References2
Prion
Prion
added 2022/12/07 4:15 a.m.27 views

Input validation

Improper neutralization of Server-Side Includes SSW within a web page in Movable Type series allows a remote authenticated attacker with Privilege of 'Manage of Content Types' may execute an arbitrary Perl script and/or an arbitrary OS command. Affected products/versions are as follows: Movable...

5.8CVSS6.9AI score0.00972EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/12/07 12:0 a.m.30 views

CVE-2022-43660

Improper neutralization of Server-Side Includes SSW within a web page in Movable Type series allows a remote authenticated attacker with Privilege of 'Manage of Content Types' may execute an arbitrary Perl script and/or an arbitrary OS command. Affected products/versions are as follows: Movable...

7.2AI score0.00972EPSS
Exploits0References2
CVE
CVE
added 2022/12/07 12:0 a.m.53 views

CVE-2022-43660

The CVE-2022-43660 issue is an SSI (Server-Side Includes) handling vulnerability in Movable Type and related products. A remote authenticated attacker with the privilege “Manage of Content Types” could execute arbitrary Perl scripts or arbitrary OS commands via a crafted web page. Affected are Mo...

7.2CVSS6.9AI score0.00972EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/07 12:0 a.m.7 views

PT-2022-26995 · Unknown · Movable Type Premium Advanced +3

Name of the Vulnerable Software and Affected Versions: Movable Type versions 7 r.5301 and earlier Movable Type Advanced versions 7 r.5301 and earlier Movable Type Premium version 1.53 and earlier Movable Type Premium Advanced version 1.53 and earlier Description: The issue is related to the...

7.2CVSS7AI score0.00972EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2022/12/07 12:0 a.m.13 views

CVE-2022-43660

Improper neutralization of Server-Side Includes SSW within a web page in Movable Type series allows a remote authenticated attacker with Privilege of 'Manage of Content Types' may execute an arbitrary Perl script and/or an arbitrary OS command. Affected products/versions are as follows: Movable...

7AI score0.00972EPSS
Exploits0References2
Openbugbounty
Openbugbounty
added 2022/11/25 11:37 p.m.9 views

omnia-raczynscy.pl Cross Site Scripting vulnerability OBB-3071621

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2022/11/17 4:13 p.m.5 views

CLSA-2022-1668701633 libxml2: Fix of CVE-2016-3709

CVE-2016-3709: back to URI escape in server side includes...

6.1CVSS6.8AI score0.00749EPSS
Exploits1References1
OSV
OSV
added 2022/11/17 4:12 p.m.9 views

CLSA-2022-1668701552 libxml2: Fix of CVE-2016-3709

CVE-2016-3709: back to URI escape in server side includes...

6.1CVSS6.8AI score0.00749EPSS
Exploits1References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2022/11/16 8:7 a.m.6 views

Multiple vulnerabilities in Movable Type

Overview Movable Type provided by Six Apart Ltd. contains multiple vulnerabilities listed below. Improper Validation of Syntactic Correctness of Input CWE-1286 - CVE-2022-45113 Cross-site Scripting CWE-79 - CVE-2022-45122 Improper Neutralization of Server-Side Includes SSI Within a Web Page CWE-9...

7.5CVSS6.7AI score0.00972EPSS
Exploits1References11
Openbugbounty
Openbugbounty
added 2022/09/27 7:48 a.m.23 views

seksshopistanbul.net Cross Site Scripting vulnerability OBB-2956728

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/09/22 4:33 a.m.17 views

hartgersradiateuren.nl Cross Site Scripting vulnerability OBB-2941200

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/09/18 7:39 p.m.14 views

geevers.nl Cross Site Scripting vulnerability OBB-2934123

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/09/15 11:8 a.m.14 views

walkerbooks.com.au Cross Site Scripting vulnerability OBB-2922918

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/08/21 12:31 p.m.16 views

jeremyreiss.fr Cross Site Scripting vulnerability OBB-2856889

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Rows per page
Query Builder