Lucene search
+L

632 matches found

bdu_fstec
bdu_fstec
added 2024/11/25 12:0 a.m.11 views

The vulnerability in the virtual learning environment Moodle arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out attacks using cross-site scripting (XSS).

The vulnerability in the virtual learning environment Moodle exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out attacks using cross-site scripting XSS...

6.4CVSS5.2AI score0.00357EPSS
Exploits0References3Affected Software2
bdu_fstec
bdu_fstec
added 2024/11/25 12:0 a.m.9 views

The vulnerability in the virtual learning environment Moodle arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability in the virtual learning environment Moodle exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

6.4CVSS5.4AI score0.00338EPSS
Exploits0References3Affected Software2
bdu_fstec
bdu_fstec
added 2024/11/21 12:0 a.m.13 views

The vulnerability of the PDF document viewing tool within the XWiki PDF Viewer Macro (Pro) allows attackers to perform cross-site scripting attacks by exploiting a lack of protection for the structure of web pages.

The vulnerability of the PDF document viewing tool within the XWiki PDF Viewer Macro Pro is related to the lack of measures taken to protect the structure of the web page during the processing of the width parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site...

9CVSS5.2AI score0.00418EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2024/11/13 12:0 a.m.11 views

The vulnerability of the Portal for ArcGIS web portal, related to the lack of measures taken to protect the structure of the web page, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Portal for ArcGIS web portal is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.2AI score0.00338EPSS
Exploits0References4Affected Software1
bdu_fstec
bdu_fstec
added 2024/11/07 12:0 a.m.7 views

A vulnerability in the configuration of the CI/CD application deployment and continuous integration system JetBrains TeamCity allows a hacker to execute cross-site scripting attacks.

The vulnerability in the configuration of CI/CD system’s backup settings in JetBrains TeamCity exists due to the lack of measures taken to protect the structure of the web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.2AI score0.0147EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2024/10/30 12:0 a.m.7 views

The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform allows a perpetrator to carry out cross-site scripting attacks.

The vulnerability of the Splunk Web interface of the Splunk Enterprise operating analysis platform is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks...

5.5CVSS5.2AI score0.00355EPSS
Exploits0References5Affected Software2
bdu_fstec
bdu_fstec
added 2024/10/24 12:0 a.m.7 views

The vulnerability of the SAP NetWeaver Enterprise Portal software integration platform, related to the lack of protective measures for the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the SAP NetWeaver Enterprise Portal software integration platform is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.2AI score0.00245EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2024/10/23 12:0 a.m.7 views

The vulnerability of the TinyMCE formatted text editor arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability of the TinyMCE formatted text editor exists because measures to protect the structure of web pages are not taken. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks using a specially created link...

6.4CVSS6.8AI score0.00529EPSS
Exploits0References8Affected Software2
ptsecurity
ptsecurity
added 2024/10/22 12:0 a.m.8 views

PT-2024-27 · Unknown · Pt Sandbox +1

Name of the Vulnerable Software and Affected Versions: PT MultiScanner and PT Sandbox affected versions not specified Description: The issue is related to the lack of protection for the web page structure in PT MultiScanner and PT Sandbox. This could allow a remote attacker to execute JavaScript...

9CVSS7.3AI score
Exploits0References4
redos
redos
added 2024/10/22 12:0 a.m.23 views

ROS-20241021-10

The vulnerability of the SI library for asynchronous DNS c-ares queries is related to failure to take measures to protect the structure of a web page. the structure of the web page. Exploitation of the vulnerability could allow an attacker acting remotely, gain access to sensitive data, compromis...

6.8CVSS7AI score0.02617EPSS
Exploits1
bdu_fstec
bdu_fstec
added 2024/10/14 12:0 a.m.14 views

The vulnerability of the Omnibox address bars in Google Chrome and Microsoft Edge browsers allows attackers to perform cross-site scripting attacks.

The vulnerability of the Omnibox address bars in Google Chrome and Microsoft Edge is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS6.9AI score0.00257EPSS
Exploits0References6Affected Software3
bdu_fstec
bdu_fstec
added 2024/10/09 12:0 a.m.11 views

The vulnerability of the MSHTML platform in Microsoft Windows operating systems allows attackers to perform spoofing attacks.

The vulnerability of the MSHTML platform in Microsoft Windows operating systems is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform spear-phishing attacks remotely...

7.8CVSS7.9AI score0.43679EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2024/10/08 12:0 a.m.7 views

PT-2024-6806 · Microsoft · Power Bi Report Server

Name of the Vulnerable Software and Affected Versions: Power BI Report Server versions affected versions not specified Description: The issue is related to the Power BI Report Server, where a lack of proper web page structure protection can be exploited. This can allow a remote attacker to perfor...

8.8CVSS6.1AI score0.01816EPSS
Exploits0References5
bdu_fstec
bdu_fstec
added 2024/10/04 12:0 a.m.7 views

The vulnerability in Microsoft Edge browsers arises due to the lack of measures taken to protect the structure of web pages. This allows attackers to execute spoofing attacks.

The vulnerability of Microsoft Edge exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability can allow a malicious actor to perform a spear-phishing attack remotely...

5CVSS5.4AI score0.00465EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2024/09/30 12:0 a.m.5 views

The vulnerability of the Blink web browser component in Google Chrome, which allows a hacker to compromise data integrity

The vulnerability of the Blink web browser component in Google Chrome relates to the lack of protective measures for the structure of the web page. Exploiting this vulnerability allows a malicious actor to compromise data integrity through a specially created HTML page...

4.3CVSS6.3AI score0.01331EPSS
Exploits1References11Affected Software2
bdu_fstec
bdu_fstec
added 2024/09/30 12:0 a.m.7 views

The vulnerability of Google Chrome’s web browser extensions, which allows a perpetrator to compromise data integrity

The vulnerability of Google Chrome’s web browser extensions is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of data...

4.3CVSS6.3AI score0.01481EPSS
Exploits1References11Affected Software2
bdu_fstec
bdu_fstec
added 2024/09/13 12:0 a.m.6 views

The vulnerability of the Zabbix universal monitoring system, related to the lack of measures taken to protect the website structure, allows attackers to gain access to confidential data and compromise its integrity.

The vulnerability of the Zabbix universal monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data and compromise its integrity...

5.5CVSS5.9AI score0.64063EPSS
Exploits0References9Affected Software4
redos
redos
added 2024/09/02 12:0 a.m.19 views

ROS-20240902-04

A vulnerability in the xmlattr filter of the Jinja2 templating engine for the Python programming language is related to the failure to take measures to protect the structure of a web page. to protect the structure of a web page. Exploitation of the vulnerability could allow an attacker acting...

6.1CVSS6.1AI score0.00892EPSS
Exploits0
bdu_fstec
bdu_fstec
added 2024/08/30 12:0 a.m.10 views

The vulnerability of the virtual learning environment Moodle, which exists due to the lack of measures taken to protect the structure of the web page, allows a hacker to execute arbitrary code.

The vulnerability in the virtual learning environment Moodle exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by creating a specially crafted request...

9CVSS8.2AI score0.83343EPSS
Exploits8References6Affected Software2
ptsecurity
ptsecurity
added 2024/08/23 12:0 a.m.7 views

PT-2024-7308 · Icms · Icms

Name of the Vulnerable Software and Affected Versions: iCMS affected versions not specified Description: The issue exists due to inadequate protection of the web page structure in the iCMS content management system. An attacker can exploit this issue by sending a specially crafted HTTP request to...

6.4CVSS6AI score
Exploits0References1
Rows per page
Query Builder