Lucene search
K

113 matches found

NVD
NVD
added 2020/12/15 11:15 p.m.16 views

CVE-2020-35122

An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could bypass the access controls for using a saved database connection profile to submit arbitrary SQL against a saved database connection...

7.5CVSS7.7AI score0.00823EPSS
Exploits0References1
Prion
Prion
added 2020/12/15 11:15 p.m.20 views

Design/Logic Flaw

An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could bypass the access controls for using a saved database connection profile to submit arbitrary SQL against a saved database connection...

4CVSS7.8AI score0.00823EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/12/15 11:15 p.m.18 views

Code injection

An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could insert arbitrary JavaScript into saved macro parameters that would execute when a user viewed a page with that instance of the macro...

6.8CVSS8.6AI score0.00991EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/12/15 10:7 p.m.49 views

CVE-2020-35121

The CVE-2020-35121 entry affects the Keysight Database Connector plugin for Confluence (pre-1.5.0). An attacker could inject arbitrary JavaScript into saved macro parameters, which would execute when a page with that macro is viewed, enabling client-side code execution (a cross-site scripting vec...

8.8CVSS8.5AI score0.00991EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/15 10:7 p.m.30 views

CVE-2020-35121

An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could insert arbitrary JavaScript into saved macro parameters that would execute when a user viewed a page with that instance of the macro...

8.6AI score0.00991EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/12/15 10:7 p.m.20 views

CVE-2020-35122

An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could bypass the access controls for using a saved database connection profile to submit arbitrary SQL against a saved database connection...

7.7AI score0.00823EPSS
Exploits0References1
CVE
CVE
added 2020/12/15 10:7 p.m.44 views

CVE-2020-35122

The CVE-2020-35122 vulnerability affects the Keysight Database Connector plugin for Atlassian Confluence prior to version 1.5.0. A malicious user could bypass access controls for using a saved database connection profile to submit arbitrary SQL against a saved database connection. Root cause: ins...

7.5CVSS7.7AI score0.00823EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2020/12/15 12:0 a.m.6 views

Bitbucket Keysight SQL Injection Vulnerability

Bitbucket Keysight is a database connection plugin available for Atlassian products from the Bitbucket organization. A SQL injection vulnerability exists in the Keysight Database Connector plugin before 1.5.0, which originates from a malicious user being able to bypass access control and submit...

7.5CVSS7.3AI score0.00823EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/12/15 12:0 a.m.6 views

Keysight Database Connector plugin code injection vulnerability

Bitbucket Keysight is a database connector plugin available for Atlassian products from the Bitbucket organization. A security vulnerability exists in the Keysight Database Connector plugin before 1.5.0, which originates from a malicious user being able to insert arbitrary JavaScript into saved...

8.8CVSS7.5AI score0.00991EPSS
Exploits0References2
Openbugbounty
Openbugbounty
added 2018/04/26 2:12 a.m.19 views

keysight.com XSS vulnerability

Open Bug Bounty ID: OBB-608470 Description| Value ---|--- Affected Website:| keysight.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2017/09/03 3:21 a.m.13 views

community.keysight.com Open Redirect vulnerability

Vulnerable URL: https://community.keysight.com/external-link.jspa?url=http://www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 03.12.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/05/05 5:24 p.m.10 views

service.keysight.com XSS vulnerability

Vulnerable URL: https://service.keysight.com/infoline/public/details.aspx?pn=a%3E%27%3E%22%3Et%3Ci%3Ep%3Cimg+src%3Dy+onerror%3Dprompt%28%2FPENBUGBOUNTY%2F%29%3E=a%3E%27%3E%22%3Et%3Ci%3Ep%3Cimg+src%3Dy+onerror%3Dprompt%28%2FPENBUGBOUNTY%2F%29%3E=COV=detailsQUERYMODELSERIAL=Weiter Details:...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/06/06 2:54 p.m.8 views

keysight.com XSS vulnerability

Vulnerable URL: https://www.keysight.com/main/rcqCheckOut.jspx?cc=" Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 09:40 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 26072 VIP website status:| Yes Check...

6.3AI score
Exploits0
Rows per page
Query Builder