Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

16 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-24770

Malicious code in bioql PyPI...

9.9CVSS9.1AI score0.00278EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/02/05 10:50 p.m.8 views

CVE-2022-1467

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

9.9CVSS6.8AI score0.00278EPSS
Exploits0References1
NVD
NVDadded 2022/05/23 8:16 p.m.13 views

CVE-2022-1467

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

9.9CVSS0.00278EPSS
Exploits0References2
Prion
Prionadded 2022/05/23 8:16 p.m.13 views

Command injection

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

8.5CVSS9.4AI score0.00278EPSS
Exploits0References2
CVE
CVEadded 2022/05/23 7:17 p.m.105 views

CVE-2022-1467

CVE-2022-1467 affects AVEVA InTouch Access Anywhere and AVEVA Plant SCADA Access Anywhere (all versions). The root cause is a Windows language bar overlay that can be manipulated to launch an OS command prompt from within the browser, creating a context-escape from the hosted application to the O...

9.9CVSS8.7AI score0.00278EPSS
Exploits0References2Affected Software2
Cvelist
Cvelistadded 2022/05/23 7:17 p.m.13 views

CVE-2022-1467 AVEVA InTouch Access Anywhere Exposure of Resource to Wrong Sphere

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

7.4CVSS9.7AI score0.00278EPSS
Exploits0References2
ICS
ICSadded 2022/05/10 12:0 a.m.55 views

AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: AVEVA Equipment: AVEVA InTouch Access Anywhere and AVEVA Plant SCADA Access Anywhere Vulnerability: Exposure of Resource to Wrong Sphere 2. RISK EVALUATION Successful exploitation of this vulnerability...

9.9CVSS9AI score0.00278EPSS
Exploits0References5
OSV
OSVadded 2021/09/13 6:15 p.m.0 views

CVE-2021-24431

The Language Bar Flags WordPress plugin through 1.0.8 does not have any CSRF in place when saving its settings and did not sanitise or escape them when generating the flag bar in the frontend. This could allow attackers to make a logged in admin change the settings, and set Cross-Site Scripting...

4.3CVSS5.8AI score
Exploits0References1
CVE
CVEadded 2021/09/13 5:56 p.m.50 views

CVE-2021-24431

CVE-2021-24431 affects the Language Bar Flags WordPress plugin (versions

4.3CVSS4.5AI score0.00144EPSS
Exploits2References1Affected Software1
Cvelist
Cvelistadded 2021/09/13 5:56 p.m.14 views

CVE-2021-24431 Language Bar Flags <= 1.0.8 - CSRF to Stored XSS

The Language Bar Flags WordPress plugin through 1.0.8 does not have any CSRF in place when saving its settings and did not sanitise or escape them when generating the flag bar in the frontend. This could allow attackers to make a logged in admin change the settings, and set Cross-Site Scripting...

4.8AI score0.00144EPSS
Exploits2References1
WPVulnDB
WPVulnDBadded 2021/08/16 12:0 a.m.20 views

Language Bar Flags <= 1.0.8 - CSRF to Stored XSS

The plugin does not have any CSRF in place when saving its settings and did not sanitise or escape them when generating the flag bar in the frontend. This could allow attackers to make a logged in admin change the settings, and set Cross-Site Scripting payload in them, which will be executed in t...

4.3CVSS2.2AI score0.00144EPSS
Exploits2Affected Software1
wpexploit
wpexploitadded 2021/08/16 12:0 a.m.764 views

Language Bar Flags <= 1.0.8 - CSRF to Stored XSS

The plugin does not have any CSRF in place when saving its settings and did not sanitise or escape them when generating the flag bar in the frontend. This could allow attackers to make a logged in admin change the settings, and set Cross-Site Scripting payload in them, which will be executed in t...

4.3CVSS0.3AI score0.00144EPSS
Exploits2
Citrix
Citrixadded 2018/01/24 12:0 a.m.5 views

Improved Control Over the Remote Language Bar for Seamless Published Applications

Introduction This feature enhancement first appears in the XenApp and XenDesktop 7.17 Product Release. Code changes to support this feature were required in Windows VDA version 7.17 and Receiver for Windows 4.11. Using the Receiver for Windows UI, users can now configure whether they want to...

7.3AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.26 views

Hotel Booking Portal 0.1 - Multiple Vulnerabilities

No description provided by source. ----------------------------------------------------------- / | | | | | | | | | | | | | | | | | / |/ |/ \ | | || | || | | | | / | ||\,|,||| ----------------------------------------------------------- Hotel Booking Portal v0.1 Multiple Vulnerabilities Google...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2012/08/13 12:0 a.m.27 views

Hotel Booking Portal 0.1 - Multiple Vulnerabilities

----------------------------------------------------------- / | | | | | | | | | | | | | | | | | / |/ |/ \ | | || | || | | | | / | ||\,|,||| ----------------------------------------------------------- Hotel Booking Portal v0.1 Multiple Vulnerabilities Google dork: "Made And Powered By Hotels...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2012/08/13 12:0 a.m.17 views

Hotel Booking Portal 0.1 - Multiple Vulnerabilities

Hotel Booking Portal 0.1 - Multiple Vulnerabilities ----------------------------------------------------------- / | | | | | | | | | | | | | | | | | / |/ |/ \ | | || | || | | | | / | ||\,|,||| ----------------------------------------------------------- Hotel Booking Portal v0.1 Multiple...

0.1AI score
Exploits0
Rows per page
Query Builder