Lucene search
K

7 matches found

CVE
CVE
added 2025/08/14 4:28 p.m.19 views

CVE-2025-20136

CVE-2025-20136 affects Cisco Secure Firewall ASA/FTD DNS inspection when NAT44/NAT64/NAT46 is configured. An unauthenticated attacker can trigger an infinite loop by sending crafted DNS packets that match a static NAT rule with DNS inspection enabled, causing the device to reload and resulting in...

8.6CVSS7.5AI score0.00567EPSS
Exploits0References1
NVD
NVD
added 2024/03/05 1:15 p.m.25 views

CVE-2024-2188

Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...

6.1CVSS6AI score0.00992EPSS
Exploits1References1
OSV
OSV
added 2024/03/05 1:15 p.m.3 views

CVE-2024-2188

Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...

6.1CVSS5.9AI score0.00992EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/03/05 12:0 a.m.9 views

TP-LINK AX50 跨站脚本漏洞

TP-LINK AX50 is a router device from China P&L TP-LINK. A cross-site scripting vulnerability exists in TP-LINK AX50 version 1.0.11 build 2022052. The vulnerability stems from the application's lack of effective filtering and escaping of user-supplied data, which can be exploited by an attacker to...

6.1CVSS6.1AI score0.00992EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.6 views

PT-2024-2143 · Tp Link · Tp-Link Archer C50

Name of the Vulnerable Software and Affected Versions: TP-Link Archer AX50 version 1.0.11 build 2022052 Description: The issue is related to a Cross-Site Scripting XSS vulnerability that could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious...

6.1CVSS6.5AI score0.00992EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2017/06/28 2:52 p.m.6 views

python-django-horizon: XSS in federation mappings UI

A cross-site scripting flaw was discovered in the OpenStack dashboard horizon which allowed remote authenticated administrators to conduct XSS attacks using a crafted federation mapping rule. For this flaw to be exploited, federation mapping must be enabled in the dashboard...

4.8CVSS5.7AI score0.01054EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/12/15 10:11 p.m.5 views

mod_jk: Buffer overflow when concatenating virtual host name and URI

It was found that the length checks prior to writing to the target buffer for creating a virtual host mapping rule did not take account of the length of the virtual host name, creating the potential for a buffer overflow...

9.8CVSS6.2AI score0.18989EPSS
Exploits1References5
Rows per page
Query Builder