Lucene search
K

26 matches found

Positive Technologies
Positive Technologies
added 2024/10/24 12:0 a.m.4 views

PT-2024-32872 · Unknown +3 · Openrefine +3

Name of the Vulnerable Software and Affected Versions: OpenRefine versions prior to 3.8.3 Description: The built-in error page in OpenRefine includes the exception message and exception traceback without escaping HTML tags, allowing injection into the page if an attacker can produce an error with...

9.8CVSS6.8AI score0.45473EPSS
Exploits8References44
BDU FSTEC
BDU FSTEC
added 2024/04/05 12:0 a.m.5 views

The vulnerability of the Wiki Page Handler component of the software platform based on Git for collaborative code development on GitLab allows a attacker to perform XSS attacks.

The vulnerability of the Wiki Page Handler component in the git-based software development platform for collaborative code development on GitLab exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS...

8.7CVSS5.5AI score0.0049EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2023/12/08 4:15 p.m.17 views

Spoofing

A vulnerability classified as problematic was found in Typecho 1.2.1. Affected by this vulnerability is an unknown functionality of the file /admin/manage-pages.php of the component Page Handler. The manipulation leads to backdoor. The attack can be launched remotely. The exploit has been disclos...

3.3CVSS7AI score0.00645EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/08 12:0 a.m.6 views

PT-2023-32716 · Typecho · Typecho

Name of the Vulnerable Software and Affected Versions: Typecho version 1.2.1 Description: A vulnerability was found in the file /admin/manage-pages.php of the component Page Handler, which can lead to a backdoor. The attack can be launched remotely. The exploit has been disclosed to the public an...

3.3CVSS4AI score0.00645EPSS
Exploits1References7
OSV
OSV
added 2023/07/23 8:15 a.m.5 views

CVE-2023-3847

A vulnerability classified as problematic was found in mooSocial mooDating 1.2. This vulnerability affects unknown code of the file /users of the component URL Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. VDB-235198 is the identifier assigned to...

6.1CVSS3.8AI score0.03648EPSS
Exploits4References3
Prion
Prion
added 2021/12/08 10:15 p.m.17 views

Cross site scripting

An error in a page handler of the VRM may lead to a reflected cross site scripting XSS in the web-based interface. To exploit this vulnerability an attack must be able to modify the HTTP header that is sent. This issue also affects installations of the DIVAR IP and BVMS with VRM installed...

4.3CVSS5.9AI score0.00495EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder