Lucene search
K

206 matches found

Openbugbounty
Openbugbounty
added 2023/09/29 6:23 p.m.20 views

nice.city-life.fr Cross Site Scripting vulnerability OBB-3712448

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/06/27 4:0 p.m.10 views

Microsoft at NICE Conference: Resetting expectations and enabling diversity in the cybersecurity workforce

Closing the cybersecurity talent gap is not something we can achieve alone; it requires a collective effort from the entire industry and focus on enabling cybersecurity awareness and education for all. This realization hit home for us during our recent participation in the National Initiative for...

6.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/06/27 4:0 p.m.12 views

Microsoft at NICE Conference: Resetting expectations and enabling diversity in the cybersecurity workforce

Closing the cybersecurity talent gap is not something we can achieve alone; it requires a collective effort from the entire industry and focus on enabling cybersecurity awareness and education for all. This realization hit home for us during our recent participation in the National Initiative for...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/22 10:12 a.m.7 views

nice.city-life.fr Cross Site Scripting vulnerability OBB-3457422

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/08 10:8 p.m.8 views

nice-design.dk Cross Site Scripting vulnerability OBB-3405282

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
NVD
NVD
added 2023/04/23 12:15 p.m.22 views

CVE-2023-22686

Cross-Site Request Forgery CSRF vulnerability in TriniTronic Nice PayPal Button Lite plugin = 1.3.5 versions...

8.8CVSS6.5AI score0.00264EPSS
Exploits0References1
CVE
CVE
added 2023/04/23 11:22 a.m.51 views

CVE-2023-22686

CVE-2023-22686 affects the WordPress plugin “Nice PayPal Button Lite” (TriniTronic) up to version 1.3.5. The root cause is a CSRF vulnerability due to insufficient CSRF checks in the plugin, enabling an attacker to coax a user into performing unintended actions on a site the user is authenticated...

8.8CVSS7.1AI score0.00264EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/23 11:22 a.m.7 views

CVE-2023-22686 WordPress Nice PayPal Button Lite Plugin <= 1.3.5 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in TriniTronic Nice PayPal Button Lite plugin = 1.3.5 versions...

5.4CVSS7.4AI score0.00264EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/04/23 12:0 a.m.4 views

PT-2023-18631 · WordPress · Trinitronic Nice Paypal Button Lite

Name of the Vulnerable Software and Affected Versions: TriniTronic Nice PayPal Button Lite plugin versions 1.3.5 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintend...

8.8CVSS8.5AI score0.00264EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/04/23 12:0 a.m.3 views

WordPress Plugin Nice PayPal Button Lite 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forge...

8.8CVSS7.8AI score0.00264EPSS
Exploits0References2
Prion
Prion
added 2023/03/19 7:15 p.m.13 views

Out-of-bounds

A vulnerability was found in SourceCodester Simple and Nice Shopping Cart Script 1.0. It has been rated as critical. This issue affects some unknown processing of the file uploaderm.php. The manipulation of the argument submit leads to unrestricted upload. The attack may be initiated remotely. Th...

6.5CVSS9.5AI score0.0072EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/01/19 12:0 a.m.11 views

WordPress Nice PayPal Button Lite Plugin <= 1.3.5 is vulnerable to Cross Site Request Forgery (CSRF)

Software Nice PayPal Button Lite Type Plugin Vulnerable versions = 1.3.5 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-22686 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 497c643d4eec Credits Mika Required...

8.8CVSS6.7AI score0.00264EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/01/03 11:15 p.m.17 views

CVE-2022-42710

Nice formerly Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e devices are vulnerable to Stored Cross-Site Scripting XSS...

5.4CVSS5.3AI score0.00554EPSS
Exploits1References1
Prion
Prion
added 2023/01/03 11:15 p.m.17 views

Cross site scripting

Nice formerly Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e devices are vulnerable to Stored Cross-Site Scripting XSS...

4.9CVSS5.3AI score0.00554EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/03 12:0 a.m.8 views

CVE-2022-42710

Nice formerly Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e devices are vulnerable to Stored Cross-Site Scripting XSS...

5.4AI score0.00554EPSS
Exploits1References1
CVE
CVE
added 2023/01/03 12:0 a.m.59 views

CVE-2022-42710

CVE-2022-42710 affects Nice (formerly Nortek) Linear eMerge E3-Series devices and is a Stored XSS vulnerability. Affected versions include 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e (and 0.32-07e through 0.32-09c per PT-2022-7149). Root cause: insufficient protection...

5.4CVSS5.3AI score0.00554EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/01/03 12:0 a.m.24 views

CVE-2022-42710

Nice formerly Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e devices are vulnerable to Stored Cross-Site Scripting XSS...

5.6AI score0.00554EPSS
Exploits1References1
NVD
NVD
added 2022/12/08 4:15 p.m.26 views

CVE-2022-39900

Improper access control vulnerability in Nice Catch prior to SMR Dec-2022 Release 1 allows physical attackers to access contents of all toast generated in the application installed in Secure Folder through Nice Catch...

4.6CVSS0.00127EPSS
Exploits0References1
OSV
OSV
added 2022/12/08 4:15 p.m.2 views

CVE-2022-39900

Improper access control vulnerability in Nice Catch prior to SMR Dec-2022 Release 1 allows physical attackers to access contents of all toast generated in the application installed in Secure Folder through Nice Catch...

4.6CVSS5.8AI score0.00127EPSS
Exploits0References1
Prion
Prion
added 2022/12/08 4:15 p.m.20 views

Improper access control

Improper access control vulnerability in Nice Catch prior to SMR Dec-2022 Release 1 allows physical attackers to access contents of all toast generated in the application installed in Secure Folder through Nice Catch...

2.1CVSS4.6AI score0.00127EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder