CVE-2021-27695

Multiple stored cross-site scripting XSS vulnerabilities in openMAINT 2.1-3.3-b allow remote attackers to inject arbitrary web script or HTML via any "Add" sections, such as Add Card Building & Floor, or others in the Name and Code Parameters...

EUVD-2020-17269

Malware in sbrugna...

EUVD-2021-14437

Malware in sbrugna...

CVE-2020-24549

openMAINT before 1.1-2.4.2 allows remote authenticated users to run arbitrary JSP code on the underlying web server...

CVE-2021-27695

Multiple stored cross-site scripting XSS vulnerabilities in openMAINT 2.1-3.3-b allow remote attackers to inject arbitrary web script or HTML via any "Add" sections, such as Add Card Building & Floor, or others in the Name and Code Parameters...

CVE-2021-27695

Multiple stored cross-site scripting XSS vulnerabilities in openMAINT 2.1-3.3-b allow remote attackers to inject arbitrary web script or HTML via any "Add" sections, such as Add Card Building & Floor, or others in the Name and Code Parameters...

Cross site scripting

Multiple stored cross-site scripting XSS vulnerabilities in openMAINT 2.1-3.3-b allow remote attackers to inject arbitrary web script or HTML via any "Add" sections, such as Add Card Building & Floor, or others in the Name and Code Parameters...

CVE-2021-27695

CVE-2021-27695 : Multiple stored cross-site scripting (XSS) vulnerabilities in openMAINT 2.1–3.3-b allow remote attackers to inject arbitrary web script or HTML via Add sections (e.g., Building Card) in Name/Code parameters. Affects openMAINT 2.1–3.3-b; confirmed by NVD and multiple vendors (Red ...

CVE-2021-27695

Multiple stored cross-site scripting XSS vulnerabilities in openMAINT 2.1-3.3-b allow remote attackers to inject arbitrary web script or HTML via any "Add" sections, such as Add Card Building & Floor, or others in the Name and Code Parameters...

Tecnoteca openMAINT 跨站脚本漏洞

Tecnoteca openMAINT is an application from the Italian company Tecnoteca. It is based on the CMDBuild software, from which it inherits basic functionality and configuration mechanisms. A security vulnerability exists in openMAINT 2.1-3.3-b, which can be exploited by remote attackers to inject...

openMAINT 2.1-3.3-b - (Multiple) Persistent Cross-Site Scripting Vulnerability

Exploit Title: openMAINT openMAINT 2.1-3.3-b - 'Multiple' Persistent Cross-Site Scripting Exploit Author: Hosein Vita Vendor Homepage: https://www.openmaint.org/ Software Link: https://sourceforge.net/projects/openmaint/files/2.1/Core%20updates/openmaint-2.1-3.3.1/ Version: 2.1-3.3 Tested on: Lin...

openMAINT 2.1-3.3-b Cross Site Scripting

Exploit Title: openMAINT openMAINT 2.1-3.3-b - 'Multiple' Persistent Cross-Site Scripting Date: 13/03/2021 Exploit Author: Hosein Vita Vendor Homepage: https://www.openmaint.org/ Software Link: https://sourceforge.net/projects/openmaint/files/2.1/Core%20updates/openmaint-2.1-3.3.1/ Version: 2.1-3...

openMAINT openMAINT 2.1-3.3-b - 'Multiple' Persistent Cross-Site Scripting

Exploit Title: openMAINT openMAINT 2.1-3.3-b - 'Multiple' Persistent Cross-Site Scripting Date: 13/03/2021 Exploit Author: Hosein Vita Vendor Homepage: https://www.openmaint.org/ Software Link: https://sourceforge.net/projects/openmaint/files/2.1/Core%20updates/openmaint-2.1-3.3.1/ Version: 2.1-3...

CVE-2020-24549

openMAINT before 1.1-2.4.2 allows remote authenticated users to run arbitrary JSP code on the underlying web server...

CVE-2020-24549

openMAINT before 1.1-2.4.2 allows remote authenticated users to run arbitrary JSP code on the underlying web server...

Code injection

openMAINT before 1.1-2.4.2 allows remote authenticated users to run arbitrary JSP code on the underlying web server...

CVE-2020-24549

openMAINT before 1.1-2.4.2 allows remote authenticated users to run arbitrary JSP code on the underlying web server...

OpenMAINT License Issues Vulnerability

A security vulnerability exists in OpenMAINT before 1.1-2.4.2 that allows remote authenticated users to run arbitrary JSP code...

CVE-2020-24549

openMAINT before 1.1-2.4.2 allows remote authenticated users to run arbitrary JSP code on the underlying web server...

CVE-2020-24549

CVE-2020-24549 affects openMAINT before 1.1-2.4.2. Remote authenticated users can run arbitrary JSP code on the underlying web server. The public details provided do not specify the exact vulnerable component or the root cause beyond this description, nor do they provide remediation steps. Other ...