113 matches found
CVE-2020-35122
An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could bypass the access controls for using a saved database connection profile to submit arbitrary SQL against a saved database connection...
Design/Logic Flaw
An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could bypass the access controls for using a saved database connection profile to submit arbitrary SQL against a saved database connection...
Code injection
An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could insert arbitrary JavaScript into saved macro parameters that would execute when a user viewed a page with that instance of the macro...
CVE-2020-35121
The CVE-2020-35121 entry affects the Keysight Database Connector plugin for Confluence (pre-1.5.0). An attacker could inject arbitrary JavaScript into saved macro parameters, which would execute when a page with that macro is viewed, enabling client-side code execution (a cross-site scripting vec...
CVE-2020-35121
An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could insert arbitrary JavaScript into saved macro parameters that would execute when a user viewed a page with that instance of the macro...
CVE-2020-35122
An issue was discovered in the Keysight Database Connector plugin before 1.5.0 for Confluence. A malicious user could bypass the access controls for using a saved database connection profile to submit arbitrary SQL against a saved database connection...
CVE-2020-35122
The CVE-2020-35122 vulnerability affects the Keysight Database Connector plugin for Atlassian Confluence prior to version 1.5.0. A malicious user could bypass access controls for using a saved database connection profile to submit arbitrary SQL against a saved database connection. Root cause: ins...
Bitbucket Keysight SQL Injection Vulnerability
Bitbucket Keysight is a database connection plugin available for Atlassian products from the Bitbucket organization. A SQL injection vulnerability exists in the Keysight Database Connector plugin before 1.5.0, which originates from a malicious user being able to bypass access control and submit...
Keysight Database Connector plugin code injection vulnerability
Bitbucket Keysight is a database connector plugin available for Atlassian products from the Bitbucket organization. A security vulnerability exists in the Keysight Database Connector plugin before 1.5.0, which originates from a malicious user being able to insert arbitrary JavaScript into saved...
keysight.com XSS vulnerability
Open Bug Bounty ID: OBB-608470 Description| Value ---|--- Affected Website:| keysight.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
community.keysight.com Open Redirect vulnerability
Vulnerable URL: https://community.keysight.com/external-link.jspa?url=http://www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 03.12.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated...
service.keysight.com XSS vulnerability
Vulnerable URL: https://service.keysight.com/infoline/public/details.aspx?pn=a%3E%27%3E%22%3Et%3Ci%3Ep%3Cimg+src%3Dy+onerror%3Dprompt%28%2FPENBUGBOUNTY%2F%29%3E=a%3E%27%3E%22%3Et%3Ci%3Ep%3Cimg+src%3Dy+onerror%3Dprompt%28%2FPENBUGBOUNTY%2F%29%3E=COV=detailsQUERYMODELSERIAL=Weiter Details:...
keysight.com XSS vulnerability
Vulnerable URL: https://www.keysight.com/main/rcqCheckOut.jspx?cc=" Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 09:40 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 26072 VIP website status:| Yes Check...