Lucene search
K

4 matches found

OSV
OSV
added 2026/02/10 4:16 a.m.4 views

CVE-2026-0505

The BSP applications allow an unauthenticated user to manipulate user-controlled URL parameters that are not sufficiently validated. This could result in unvalidated redirection to attacker-controlled websites, leading to a low impact on confidentiality and integrity, and no impact on the...

6.1CVSS5.8AI score
Exploits0References2
CVE
CVE
added 2025/11/11 12:15 a.m.15 views

CVE-2025-42889

CVE-2025-42889 affects SAP Starter Solution. An authenticated attacker can execute crafted database queries, exposing the back-end database. Impact is described as low for confidentiality and integrity, with no availability impact. Multiple connected sources (NVD/Red Hat/NCSc/CVE listing) confirm...

5.4CVSS6.5AI score0.00181EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/03 7:38 p.m.8 views

CVE-2024-51944 Stored XSS in Rest Services Directory

There is a stored Cross-site Scripting vulnerability in ArcGIS Server for versions 11.3 and below that may allow a remote, authenticated attacker to create a stored crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser. The privileges required...

4.8CVSS5.2AI score0.00245EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/02/16 11:15 a.m.6 views

CVE-2021-46388

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: Reason: The issue is not a vulnerability fails CNT2 - Has no impact on availability, integrity or confidence as only documented html templates are shown without additional data or the option to store changes. Notes...

5.5AI score
Exploits2References3
Rows per page
Query Builder