Lucene search
K

11 matches found

Cvelist
Cvelist
added 2026/06/09 5:5 p.m.32 views

CVE-2026-40371 Microsoft Dynamics 365 (on-premises) Elevation of Privilege Vulnerability

...

8.8CVSS0.0063EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-24302

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.01102EPSS
Exploits0References1
NVD
NVD
added 2025/08/12 6:15 p.m.5 views

CVE-2025-49745

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Dynamics 365 on-premises allows an unauthorized attacker to perform spoofing over a network...

5.4CVSS0.00474EPSS
Exploits0References1
NVD
NVD
added 2023/10/12 11:15 a.m.21 views

CVE-2023-5556

Cross-site Scripting XSS - Reflected in GitHub repository structurizr/onpremises prior to 3194...

6.1CVSS5.6AI score0.01222EPSS
Exploits1References2
OSV
OSV
added 2023/10/12 10:32 a.m.30 views

CVE-2023-5556 Cross-site Scripting (XSS) - Reflected in structurizr/onpremises

Cross-site Scripting XSS - Reflected in GitHub repository structurizr/onpremises prior to 3194...

5.3CVSS5.6AI score0.01222EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/10/12 10:32 a.m.17 views

CVE-2023-5556 Cross-site Scripting (XSS) - Reflected in structurizr/onpremises

Cross-site Scripting XSS - Reflected in GitHub repository structurizr/onpremises prior to 3194...

5.3CVSS6.1AI score0.01222EPSS
Exploits1References2
CVE
CVE
added 2023/10/12 10:32 a.m.73 views

CVE-2023-5556

CVE-2023-5556 corresponds to a reflected Cross-Site Scripting (XSS) in Structurizr on-premises prior to 3194. The vulnerability is triggered via the version parameter in workspace URLs (e.g., GET /workspace/[workspaceid]?version=...). The issue allows an attacker to inject JavaScript in authentic...

6.1CVSS5.4AI score0.01222EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/12 12:0 a.m.4 views

PT-2023-32174 · Structurizr · Structurizr/Onpremises

Name of the Vulnerable Software and Affected Versions: structurizr/onpremises versions prior to 3194 Description: The issue is related to Cross-site Scripting XSS - Reflected. This means that an attacker can inject malicious scripts into a website, which are then executed by the user's browser...

6.1CVSS5.1AI score0.01222EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/10/12 12:0 a.m.3 views

onpremises Cross-Site Scripting Vulnerability

onpremises is an open source application from Structurizr. A cross-site scripting vulnerability exists in versions prior to onpremises 3194. An attacker could exploit this vulnerability to perform cross-site scripting attacks...

6.1CVSS6.1AI score0.01222EPSS
Exploits1References3
Huntr
Huntr
added 2023/10/03 3:38 p.m.27 views

RXSS in onpremises version of structurizr

Description During investigation it was found that onpremises api endpoint GET parameter version is vulnerable to XSS injection: /workspace/workspaceid?version=1; Proof of Concept 1. Visit the link provided: http:///workspace/1/?version=1%22;alert1; 2. XSS injected...

5.8CVSS6.3AI score0.01222EPSS
Exploits1
OSV
OSV
added 2021/08/12 6:15 p.m.4 views

CVE-2021-36950

Microsoft Dynamics 365 on-premises Cross-site Scripting Vulnerability...

5.4CVSS5.8AI score0.0095EPSS
Exploits0References1
Rows per page
Query Builder