Lucene search
+L

94 matches found

EUVD
EUVD
added 2026/04/07 12:30 a.m.20 views

EUVD-2026-19484

OCS Inventory NG Server version 2.12.3 and prior contain a stored cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript by submitting malicious User-Agent HTTP headers to the /ocsinventory endpoint. Attackers can register rogue agents or craft...

5.4CVSS6.2AI score0.00218EPSS
Exploits0References4
OSV
OSV
added 2026/04/06 9:19 p.m.4 views

CVE-2026-22675 OCS Inventory NG Server Stored XSS via User-Agent

OCS Inventory NG Server version 2.12.3 and prior contain a stored cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript by submitting malicious User-Agent HTTP headers to the /ocsinventory endpoint. Attackers can register rogue agents or craft...

5.1CVSS6.2AI score0.00218EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2009-0669

Malware in sbrugna...

7.2CVSS6AI score0.00374EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-44361

Malicious code in bioql PyPI...

6.9CVSS6.7AI score0.00544EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-3726

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OCSInventory allow stored email template with special characters that lead to a Stored cross-site Scripting. CVE-2023-3726 Note that Nessus relies on the presen...

6.9CVSS6.9AI score0.00544EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2024/07/26 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-6914-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS7.5AI score0.01064EPSS
Exploits0References2
OSV
OSV
added 2024/01/04 3:15 p.m.19 views

CVE-2023-3726

OCSInventory allow stored email template with special characters that lead to a Stored cross-site Scripting...

6.9CVSS6.4AI score
Exploits0References2
OSV
OSV
added 2024/01/04 3:15 p.m.4 views

DEBIAN-CVE-2023-3726

OCSInventory allow stored email template with special characters that lead to a Stored cross-site Scripting...

6.9CVSS6.7AI score0.00544EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2024/01/04 3:15 p.m.26 views

CVE-2023-3726

OCSInventory allow stored email template with special characters that lead to a Stored cross-site Scripting...

6.9CVSS6.8AI score0.00544EPSS
Exploits1References4
OSV
OSV
added 2024/01/04 3:15 p.m.4 views

UBUNTU-CVE-2023-3726

OCSInventory allow stored email template with special characters that lead to a Stored cross-site Scripting...

6.9CVSS6.7AI score0.00544EPSS
Exploits1References5
Cvelist
Cvelist
added 2024/01/04 2:39 p.m.33 views

CVE-2023-3726 OCSInventory-ocsreports 2.12.0 - Stored cross-site Scripting

OCSInventory allow stored email template with special characters that lead to a Stored cross-site Scripting...

6.9CVSS6.6AI score0.00544EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/01/04 2:39 p.m.8 views

CVE-2023-3726 OCSInventory-ocsreports 2.12.0 - Stored cross-site Scripting

OCSInventory allow stored email template with special characters that lead to a Stored cross-site Scripting...

6.9CVSS6.4AI score0.00544EPSS
Exploits1References2
CVE
CVE
added 2024/01/04 2:39 p.m.59 views

CVE-2023-3726

Summary of CVE-2023-3726 : The vulnerability affects OCSInventory (notably the email template handling) where a stored cross-site scripting (Stored XSS) condition arises from allowing templates to contain special characters. The root cause, as described, is the improper handling of content in a s...

6.9CVSS6.4AI score0.00544EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/05 12:0 a.m.11 views

PT-2023-25863 · Unknown +1 · Ocs Inventory Ng +1

Name of the Vulnerable Software and Affected Versions: OCSInventory affected versions not specified Description: The issue allows stored email templates with special characters, leading to a Stored cross-site Scripting. Recommendations: At the moment, there is no information about a newer version...

6.9CVSS6.3AI score0.00544EPSS
Exploits1References19
OpenVAS
OpenVAS
added 2023/07/10 12:0 a.m.20 views

Debian: Security Advisory (DLA-3486-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS7.9AI score0.01064EPSS
Exploits0References4
Debian
Debian
added 2023/07/08 2:6 p.m.26 views

[SECURITY] [DLA 3486-1] ocsinventory-server update for php-cas

Debian LTS Advisory DLA-3486-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost July 08, 2023 https://wiki.debian.org/LTS Package : ocsinventory-server Version : 2.5+dfsg1-1+deb10u1 CVE ID : n/a Debian Bug : The source package ocsinventory-server, a Hardware and...

8CVSS6.8AI score0.01064EPSS
Exploits0
OSV
OSV
added 2023/07/08 12:0 a.m.16 views

DLA-3486-1 ocsinventory-server - security update

Bulletin has no description...

7.2AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:55 a.m.4 views

SUSE CVE-2010-4777

The Perlregnumberedbufffetch function in Perl 5.10.0, 5.12.0, 5.14.0, and other versions, when running with debugging enabled, allows context-dependent attackers to cause a denial of service assertion failure and application exit via crafted input that is not properly handled when using certain...

4.3CVSS6.7AI score0.06018EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2014-0317)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.7AI score0.02347EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2020/01/27 12:0 a.m.16 views

Fedora: Security Advisory for ocsinventory-agent (FEDORA-2020-4c8a066b83)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Rows per page
Query Builder