Lucene search
K

89 matches found

Redos
Redos
added 2025/08/14 12:0 a.m.4 views

ROS-20250814-01

A vulnerability in the MediaWiki hypertext environment implementation software exists due to failure to take measures to protect the structure of the web page. Exploitation of the vulnerability could allow an attacker, acting remotely, to conduct a cross-site scripting XSS attack...

9CVSS6.1AI score0.01151EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.8 views

The vulnerability of the Android operating system, related to the lack of measures taken to protect the structure of web pages, allows attackers to enhance their privileges and execute arbitrary code.

The vulnerability of the Android operating system is related to the lack of measures taken to protect the web page structure. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary code...

7.8CVSS7.6AI score0.00209EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/03/12 12:0 a.m.20 views

The vulnerability of the pdf.js library on the MFlash secure data exchange platform, related to the lack of protective measures for website structures, allows attackers to execute arbitrary JavaScript code.

The vulnerability of the pdf.js library on the MFlash secure data exchange platform is related to the lack of protective measures for the web page structure. Exploiting this vulnerability could allow an attacker to execute arbitrary JavaScript code remotely...

9CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/05 12:0 a.m.4 views

The vulnerability of the Address Book URI field in the Thunderbird email client, specifically in Thunderbird ESR, arises from the lack of protection for the website structure. This allows attackers to execute arbitrary JavaScript code.

The vulnerability of the Address Book URI field in the Thunderbird email client, specifically in Thunderbird ESR, is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...

6.4CVSS7.2AI score0.01276EPSS
Exploits0References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.5 views

The vulnerability of Adobe Connect web conference software lies in the lack of measures taken to protect the structure of web pages, allowing attackers to execute XSS attacks.

The vulnerability of Adobe Connect web conference software relates to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute XSS attacks by injecting malicious scripts into form fields...

5.5CVSS5.6AI score0.00387EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.7 views

The vulnerability of Adobe Connect web conference software lies in the lack of measures taken to protect the structure of web pages, allowing attackers to execute XSS attacks.

The vulnerability of Adobe Connect web conference software relates to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute XSS attacks by injecting malicious scripts into form fields...

5.5CVSS5.6AI score0.00387EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/30 12:0 a.m.5 views

The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform allows a perpetrator to carry out cross-site scripting attacks.

The vulnerability of the Splunk Web interface of the Splunk Enterprise operating analysis platform is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks...

5.5CVSS5.2AI score0.00355EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.5 views

The vulnerability of the TinyMCE formatted text editor arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability of the TinyMCE formatted text editor exists because measures to protect the structure of web pages are not taken. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks using a specially created link...

6.4CVSS6.8AI score0.00529EPSS
Exploits0References8Affected Software2
Positive Technologies
Positive Technologies
added 2024/10/08 12:0 a.m.6 views

PT-2024-6806 · Microsoft · Power Bi Report Server

Name of the Vulnerable Software and Affected Versions: Power BI Report Server versions affected versions not specified Description: The issue is related to the Power BI Report Server, where a lack of proper web page structure protection can be exploited. This can allow a remote attacker to perfor...

8.8CVSS6.1AI score0.01855EPSS
Exploits0References5
Redos
Redos
added 2024/09/02 12:0 a.m.19 views

ROS-20240902-04

A vulnerability in the xmlattr filter of the Jinja2 templating engine for the Python programming language is related to the failure to take measures to protect the structure of a web page. to protect the structure of a web page. Exploitation of the vulnerability could allow an attacker acting...

6.1CVSS6.1AI score0.00892EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/08/19 12:0 a.m.10 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability of the Git-based software platform for collaborative code development on GitLab exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks by sending a specially created XML file...

4.4CVSS5.5AI score0.00294EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.9 views

PT-2024-6007 · Adobe · Magento Open Source +1

Name of the Vulnerable Software and Affected Versions: Magento Open Source and Adobe Commerce affected versions not specified Description: The issue is related to insufficient protection of the web page structure in Magento Open Source and Adobe Commerce, allowing a remote attacker to execute...

8.5CVSS7.6AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/07/25 12:0 a.m.4 views

The vulnerability of the Sidekiq framework for handling background tasks in web applications relates to the lack of security measures for protecting the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability of the Sidekiq framework for handling background tasks in web applications is related to the lack of security measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

6.5CVSS5.8AI score0.00594EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/22 12:0 a.m.4 views

The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to carry out cross-site scripting attacks...

5.5CVSS5.2AI score0.00717EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/22 12:0 a.m.6 views

The vulnerability in the web client of IBM Datacap software for document collection and processing allows attackers to execute cross-site scripting attacks by exploiting a lack of protection for the web page structure.

The vulnerability of the IBM Datacap Navigator web client software for document collection and processing exists due to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...

6.4CVSS5.2AI score0.00341EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/22 12:0 a.m.4 views

The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to carry out cross-site scripting attacks...

5.5CVSS5.2AI score0.00676EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/22 12:0 a.m.5 views

The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to carry out cross-site scripting attacks...

5.5CVSS5.2AI score0.00717EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/22 12:0 a.m.7 views

The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to carry out cross-site scripting attacks...

5.5CVSS5.2AI score0.00502EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/12 12:0 a.m.4 views

The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to carry out cross-site scripting attacks...

5.5CVSS5.2AI score0.00534EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/12 12:0 a.m.6 views

The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to carry out cross-site scripting attacks...

5.5CVSS5.2AI score0.00534EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder