Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-8395

Malware in sbrugna...

6.5CVSS6.4AI score0.01707EPSS
Exploits3References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-8394

Malware in sbrugna...

4.3CVSS6.4AI score0.01854EPSS
Exploits3References6
NVD
NVD
added 2014/11/25 3:59 p.m.15 views

CVE-2014-8558

JExperts Channel Platform 5.0.33CCB allows remote authenticated users to bypass access restrictions via crafted action and key parameters...

6.5CVSS6.3AI score0.01707EPSS
Exploits3References2
Prion
Prion
added 2014/11/25 3:59 p.m.9 views

Authentication flaw

JExperts Channel Platform 5.0.33CCB allows remote authenticated users to bypass access restrictions via crafted action and key parameters...

6.5CVSS6.8AI score0.01707EPSS
Exploits3References2Affected Software1
CVE
CVE
added 2014/11/25 3:0 p.m.36 views

CVE-2014-8558

CVE-2014-8558 affects JExperts Channel Platform 5.0.33_CCB. The vulnerability is an authorization bypass where the attacker can tamper with GET parameters named action and key to escalate privileges. authenticated users with restricted access (e.g., read-only) can access other users’ requests or ...

6.5CVSS6.5AI score0.01707EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2014/11/25 3:0 p.m.22 views

CVE-2014-8558

JExperts Channel Platform 5.0.33CCB allows remote authenticated users to bypass access restrictions via crafted action and key parameters...

6.3AI score0.01707EPSS
Exploits3References2
NVD
NVD
added 2014/11/13 9:32 p.m.12 views

CVE-2014-8557

Multiple cross-site scripting XSS vulnerabilities in JExperts Channel Platform 5.0.33CCB allow remote attackers to inject arbitrary web script or HTML via the 1 usuario.nome variable in an editarUsuario action to usuario.do or 2 titulo.form variable in a novoChamado action to ticket.do...

4.3CVSS5.7AI score0.01854EPSS
Exploits3References4
Prion
Prion
added 2014/11/13 9:32 p.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in JExperts Channel Platform 5.0.33CCB allow remote attackers to inject arbitrary web script or HTML via the 1 usuario.nome variable in an editarUsuario action to usuario.do or 2 titulo.form variable in a novoChamado action to ticket.do...

4.3CVSS6AI score0.01854EPSS
Exploits3References4Affected Software1
CVE
CVE
added 2014/11/13 3:0 p.m.35 views

CVE-2014-8557

CVE-2014-8557 : In the JExperts Channel Platform version 5.0.33_CCB, multiple stored XSS vulnerabilities exist. An attacker can inject arbitrary web script or HTML via the parameter usuario.nome in the action editarUsuario (to usuario.do) or via titulo.form in the action novoChamado (to ticket.do...

4.3CVSS5.8AI score0.01854EPSS
Exploits3References4Affected Software1
Cvelist
Cvelist
added 2014/11/13 3:0 p.m.26 views

CVE-2014-8557

Multiple cross-site scripting XSS vulnerabilities in JExperts Channel Platform 5.0.33CCB allow remote attackers to inject arbitrary web script or HTML via the 1 usuario.nome variable in an editarUsuario action to usuario.do or 2 titulo.form variable in a novoChamado action to ticket.do...

5.7AI score0.01854EPSS
Exploits3References4
Rows per page
Query Builder