Lucene search
+L

12 matches found

redhatcve
redhatcve
added 2025/11/27 1:54 p.m.3 views

CVE-2025-60916

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the charge parameter...

5.4CVSS6.2AI score0.0021EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/11/27 1:54 p.m.4 views

CVE-2025-60917

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the color parameter...

4.6CVSS6.2AI score0.00189EPSS
Exploits0References1
euvd
euvd
added 2025/11/24 6:31 p.m.3 views

EUVD-2025-198895

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the color parameter...

4.6CVSS5.8AI score0.00189EPSS
Exploits0References3
euvd
euvd
added 2025/11/24 6:31 p.m.3 views

EUVD-2025-198892

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the charge parameter...

5.4CVSS5.8AI score0.0021EPSS
Exploits0References3
nvd
nvd
added 2025/11/24 4:15 p.m.5 views

CVE-2025-60917

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the color parameter...

4.6CVSS0.00189EPSS
Exploits0References2
nvd
nvd
added 2025/11/24 4:15 p.m.6 views

CVE-2025-60916

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the charge parameter...

5.4CVSS0.0021EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/11/24 12:0 a.m.1 views

CVE-2025-60916

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the charge parameter...

5.9AI score0.0021EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/11/24 12:0 a.m.4 views

PT-2025-47932

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the charge parameter...

5.4CVSS6.3AI score0.0021EPSS
Exploits0References3
cvelist
cvelist
added 2025/11/24 12:0 a.m.9 views

CVE-2025-60916

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the charge parameter...

0.0021EPSS
Exploits0References2
cvelist
cvelist
added 2025/11/24 12:0 a.m.10 views

CVE-2025-60917

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the color parameter...

0.00189EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/11/24 12:0 a.m.10 views

PT-2025-47933

A reflected cross-site scripting XSS vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the color parameter...

6.3AI score0.00189EPSS
Exploits0References3
cve
cve
added 2025/11/24 12:0 a.m.16 views

CVE-2025-60916

CVE-2025-60916 is a reflected XSS vulnerability in Austrian OpenAtlas. The issue affects the /overview/network/ endpoint prior to OpenAtlas v8.12.0, where an attacker can inject a crafted payload into the charge parameter to execute arbitrary JavaScript in a user’s browser. The Red Hat/EU ENISA/O...

5.4CVSS5.9AI score0.0021EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder