Lucene search
K

8 matches found

NVD
NVD
added 2024/06/14 3:15 p.m.29 views

CVE-2024-23442

An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL...

6.1CVSS0.00337EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/14 2:26 p.m.84 views

CVE-2024-23442 Kibana open redirect issue

An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL...

6.1CVSS6.9AI score0.00337EPSS
Exploits0References1
Veracode
Veracode
added 2022/07/25 5:56 a.m.17 views

Denial Of Service (DoS)

github.com/caddyserver/caddy is vulnerable to denial of service. The vulnerability exists due to the out-of-bounds read in the Rewrite function of rewrite.go, allowing an attacker to crash the application by providing a maliciously crafted url...

7.5CVSS7AI score0.00972EPSS
Exploits1References4Affected Software1
Apple
Apple
added 2021/09/15 12:0 a.m.123 views

About the security content of iTunes U 3.8.3

About the security content of iTunes U 3.8.3 This document describes the security content of iTunes U 3.8.3. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...

6.1CVSS6.6AI score0.01797EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/08/24 7:15 p.m.21 views

Input validation

A validation issue was addressed with improved input sanitization. This issue is fixed in iTunes U 3.8.3. Processing a maliciously crafted URL may lead to arbitrary javascript code execution...

4.3CVSS6AI score0.01797EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/04/02 5:49 p.m.38 views

CVE-2021-1748

A validation issue was addressed with improved input sanitization. This issue is fixed in tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted URL may lead to arbitrary javascript code execution...

8.6AI score0.02738EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/11/13 2:0 p.m.26 views

CVE-2017-7739

A reflected Cross-site Scripting XSS vulnerability in web proxy disclaimer response web pages in Fortinet FortiOS 5.6.0, 5.4.0 to 5.4.5, 5.2.0 to 5.2.11 allows an unauthenticated attacker to inject arbitrary web script or HTML in the context of the victim's browser via sending a maliciously craft...

6AI score0.01076EPSS
Exploits0References3
Prion
Prion
added 2017/04/04 5:59 p.m.21 views

Open redirect

A maliciously crafted URL to a Django 1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 before 1.8.18 site using the django.views.static.serve view could redirect to any other domain, aka an open redirect vulnerability...

5.8CVSS6AI score0.0183EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder