Lucene search
K

891 matches found

CVE
CVE
added 2025/03/11 12:0 a.m.42 views

CVE-2024-51322

CVE-2024-51322 affects Zucchetti Ad Hoc Infinity 2.4. An authenticated attacker can achieve Remote Code Execution via multiple components: /jsp/home.jsp, /jsp/gsfr_feditorHTML.jsp, /servlet/SPVisualZoom, and /jsp/gsmd_container.jsp. Root cause is a cross-site scripting vulnerability that enables ...

5.4CVSS7AI score0.00337EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/03/11 12:0 a.m.12 views

CVE-2024-51319

A local file include vulnerability in the /servlet/Report of Zucchetti Ad Hoc Infinity 2.4 allows an authenticated attacker to achieve Remote Code Execution by uploading a jsp web/reverse shell through /jsp/zimgupload.jsp...

0.0043EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.6 views

PT-2025-2394 · Illumos · Illumos

Name of the Vulnerable Software and Affected Versions: illumos illumos-gate affected versions not specified Description: An error occurs in the elliptic curve point addition algorithm that uses mixed Jacobian-affine coordinates, causing the algorithm to yield a result of POINT AT INFINITY when it...

6.1CVSS6.7AI score0.00181EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/01/13 12:0 a.m.9 views

PT-2025-1782 · Pegasystems · Pega Platform

Name of the Vulnerable Software and Affected Versions: Pega Platform versions 8.1 to Infinity 24.2.0 Description: The issue is related to a Stored XSS problem with the profile. Recommendations: For Pega Platform versions 8.1 to Infinity 24.2.0, update to a version newer than Infinity 24.2.0 to...

5.4CVSS6AI score0.00306EPSS
Exploits0References6
OSV
OSV
added 2024/12/05 4:15 p.m.3 views

CVE-2024-10716

Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an XSS issue with search...

4.8CVSS5.8AI score0.00212EPSS
Exploits0References1
NVD
NVD
added 2024/12/05 4:15 p.m.30 views

CVE-2024-10716

Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an XSS issue with search...

5.9CVSS0.00212EPSS
Exploits0References1
OSV
OSV
added 2024/11/20 3:15 p.m.2 views

CVE-2024-10094

Pega Platform versions 6.x to Infinity 24.1.1 are affected by an issue with Improper Control of Generation of Code...

9.8CVSS5.8AI score0.00463EPSS
Exploits0References1
NVD
NVD
added 2024/11/20 3:15 p.m.51 views

CVE-2024-10094

Pega Platform versions 6.x to Infinity 24.1.1 are affected by an issue with Improper Control of Generation of Code...

9.8CVSS0.00463EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/20 2:45 p.m.9 views

CVE-2024-10094

Pega Platform versions 6.x to Infinity 24.1.1 are affected by an issue with Improper Control of Generation of Code...

9.1CVSS7AI score0.00463EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/20 2:45 p.m.45 views

CVE-2024-10094

Pega Platform versions 6.x to Infinity 24.1.1 are affected by an issue with Improper Control of Generation of Code...

9.1CVSS0.00463EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/20 12:0 a.m.4 views

PT-2024-16022 · Pegasystems · Pega Platform

Name of the Vulnerable Software and Affected Versions: Pega Platform versions 6.x through Infinity 24.1.1 Description: The issue is related to Improper Control of Generation of Code. No information is provided about the estimated number of potentially affected devices worldwide or real-world...

9.8CVSS7AI score0.00463EPSS
Exploits0References5
OSV
OSV
added 2024/09/12 3:18 p.m.4 views

CVE-2024-6702

Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an HTML Injection issue with Stage...

4.8CVSS5.8AI score0.00244EPSS
Exploits0References1
OSV
OSV
added 2024/09/12 3:18 p.m.3 views

CVE-2024-6700

Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with App name...

4.8CVSS5.8AI score0.00244EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/12 2:25 p.m.25 views

CVE-2024-6702

Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an HTML Injection issue with Stage...

5.2CVSS0.00244EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/12 2:25 p.m.25 views

CVE-2024-6701

Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with case type...

5.5CVSS0.00244EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/12 2:24 p.m.24 views

CVE-2024-6700

Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with App name...

5.5CVSS0.00244EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/12 12:0 a.m.4 views

PT-2024-37807 · Pegasystems · Pega Platform

Name of the Vulnerable Software and Affected Versions: Pega Platform versions 8.1 to Infinity 24.1.2 Description: The issue is related to Cross-Site Scripting XSS in the Pega Platform, specifically with the App name. Recommendations: For Pega Platform versions 8.1 to Infinity 24.1.2, update to a...

5.5CVSS5.4AI score0.00244EPSS
Exploits0References6
OSV
OSV
added 2024/06/10 9:15 p.m.1 views

CVE-2024-33850

Pexip Infinity before 34.1 has Improper Access Control for persons in a waiting room. They can see the conference roster list, and perform certain actions that should not be allowed before they are admitted to the meeting...

4.3CVSS5.8AI score0.00213EPSS
Exploits0References1
NVD
NVD
added 2024/06/10 9:15 p.m.28 views

CVE-2024-33850

Pexip Infinity before 34.1 has Improper Access Control for persons in a waiting room. They can see the conference roster list, and perform certain actions that should not be allowed before they are admitted to the meeting...

4.3CVSS0.00213EPSS
Exploits0References1
CVE
CVE
added 2024/06/10 12:0 a.m.51 views

CVE-2024-33850

CVE-2024-33850 affects Pexip Infinity prior to 34.1. The issue is improper access control for people in a waiting room: they can view the conference roster and perform actions that should be restricted until admission. Documents from multiple sources confirm the affected product/versions and the ...

4.3CVSS6.9AI score0.00213EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder