7 matches found
EUVD-2026-15723
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-and-communities allows Stored XSS.This issue affects ProfileGrid : from n/a through = 5.9.8.1...
CVE-2026-1981
creationtimestamp| type| source ---|---|--- 2026-03-07 03:57:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mggwpnlpxe2u...
CVE-2026-0949
PEM versions prior to 9.8.1 are affected by a stored Cross-site Scripting XSS vulnerability that allows users with access to the Manage Charts menu to inject arbitrary JavaScript when creating a new chart, which is then executed by any user accessing the chart. By default only the superuser and...
CVE-2025-9812
creationtimestamp| type| source ---|---|--- 2025-09-02 04:45:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxtcnvq4e72n 2025-09-02 07:32:26+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lxtlyoaodq2s...
SUSE CVE-2023-41038
Firebird is a relational database. Versions 4.0.0 through 4.0.3 and version 5.0 beta1 are vulnerable to a server crash when a user uses a specific form of SET BIND statement. Any non-privileged user with minimum access to a server may type a statement with a long CHAR length, which causes the...
Cisco TelePresence Collaboration Endpoint Software Elevation of Privilege Vulnerability (CNVD-2019-37411)
Cisco TelePresence is a Cisco TelePresence solution. A security vulnerability exists in Cisco TelePresence Collaboration Endpoint CE versions prior to 9.8.1 due to insufficient input validation. An attacker can exploit the vulnerability to be able to execute commands with root privileges by...
CVE-2018-19718
Adobe Connect versions 9.8.1 and earlier have a session token exposure vulnerability. Successful exploitation could lead to exposure of the privileges granted to a session...