Lucene search
K

632 matches found

Redos
Redos
added 2025/12/26 12:0 a.m.7 views

ROS-20251226-7304

Vulnerability in openvpn due to failure to take measures to protect the structure of a web page. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

6.4CVSS7.5AI score0.00204EPSS
Exploits0
Redos
Redos
added 2025/12/15 12:0 a.m.5 views

ROS-20251215-7308

Vulnerability in phpldapadmin related to failure to take measures to protect web page structure. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

2.1CVSS7.8AI score0.00475EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/11/18 12:0 a.m.4 views

The vulnerability in the web application for managing phpMyAdmin’s database management systems arises from the lack of protective measures taken against the structure of the web page. This allows attackers to execute arbitrary code.

The vulnerability in the web application for managing phpMyAdmin is related to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

6.4CVSS6AI score0.00403EPSS
Exploits0References5Affected Software4
Redos
Redos
added 2025/10/14 12:0 a.m.8 views

ROS-20251014-05

A vulnerability in the interface of the Grafana monitoring and surveillance platform is related to the failure to take measures to protect the web page structure when processing the /swagger endpoint. web page structure when processing the /swagger endpoint. Exploitation of the vulnerability coul...

6AI score
Exploits0
Redos
Redos
added 2025/08/22 12:0 a.m.4 views

ROS-20250822-03

SafeHtml validator vulnerability in Hibernate Validator library is related to failure to take measures to protect web page structure when processing HTML content. web page structure when processing HTML content. Exploitation of the vulnerability could allow an attacker acting remotely to conduct...

6.5CVSS6.9AI score0.02167EPSS
Exploits0
Redos
Redos
added 2025/08/14 12:0 a.m.4 views

ROS-20250814-01

A vulnerability in the MediaWiki hypertext environment implementation software exists due to failure to take measures to protect the structure of the web page. Exploitation of the vulnerability could allow an attacker, acting remotely, to conduct a cross-site scripting XSS attack...

9CVSS6.1AI score0.01151EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.9 views

The vulnerability of the WeGIA web manager, related to the failure to protect the structure of web pages, allows attackers to perform cross-site scripting attacks.

The vulnerability of the WeGIA web manager is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS5.2AI score0.00253EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/30 12:0 a.m.7 views

The vulnerability of the AutoGRAPH Web monitoring software platform lies in its lack of measures to protect the structure of web pages, allowing attackers to execute arbitrary code.

The vulnerability of the AutoGRAPH Web monitoring software platform lies in the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted POST request...

10CVSS6AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.10 views

The vulnerability of the “Import from Excel” plugin, which exists due to the lack of protective measures for website structures, allows attackers to execute XSS attacks.

The vulnerability of the “Import from Excel” plugin exists due to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

5.3CVSS5.4AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.12 views

The vulnerability of the platform for monitoring, managing, and improving LLM applications lies in the insufficient protection of the website structure, allowing attackers to perform cross-site scripting attacks.

The vulnerability of the platform for monitoring, managing, and improving LLM applications is related to insufficient protection of the web page structure when processing the dangerouslySetInnerHTML attribute. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting...

9.4CVSS7.5AI score0.00415EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.7 views

The vulnerability in the web interface of Cisco BroadWorks Application Delivery Platform allows a attacker to execute XSS attacks.

The vulnerability in the web interface of the Cisco BroadWorks Application Delivery Platform exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

6.4CVSS5.4AI score0.00284EPSS
Exploits0References2Affected Software2
Redos
Redos
added 2025/06/19 12:0 a.m.5 views

ROS-20250616-24

The vulnerability of the Zabbix universal monitoring system web-integrity is related to the failure to take measures to protect the web page structure. the structure of the web page. Exploitation of the vulnerability could allow an attacker acting remotely, conduct a cross-site scripting attack b...

7.5CVSS7.6AI score0.0034EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.58 views

The Network Configuration Manager (NCM) software, which is related to the failure to protect the structure of web pages, allows attackers to carry out XSS attacks.

The Network Configuration Manager NCM software is associated with the failure to take measures to protect the structure of web pages. Exploiting this vulnerability can allow a malicious actor to carry out XSS attacks remotely...

5CVSS5.4AI score0.00215EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.8 views

The vulnerability of the XWiki platform for creating collaborative web applications lies in its lack of protection for website structures. This allows attackers to execute arbitrary JavaScript code.

The vulnerability of the XWiki Platform lies in the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...

10CVSS5.8AI score0.00634EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.8 views

The vulnerability of the Android operating system, related to the lack of measures taken to protect the structure of web pages, allows attackers to enhance their privileges and execute arbitrary code.

The vulnerability of the Android operating system is related to the lack of measures taken to protect the web page structure. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary code...

7.8CVSS7.6AI score0.00209EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/05/28 12:0 a.m.9 views

The vulnerability of the software for implementing the hypertext environment MediaWiki allows a hacker to carry out a cross-site scripting attack.

The vulnerability of the software for implementing the hypertext environment MediaWiki is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability can allow a malicious actor to carry out a cross-site scripting attack...

5.3CVSS5.2AI score0.00359EPSS
Exploits0References7Affected Software4
Positive Technologies
Positive Technologies
added 2025/05/26 12:0 a.m.9 views

PT-2025-28935 · Ип Кривочуров Дмитрий Анатольевич · Импорт Из Excel. Загрузка Каталога Товаров 1С-Битрикс

Уязвимость плагина «Импорт из Excel» существует из-за непринятием мер по защите структуры веб-страницы. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, провести атаку межсайтового скриптинга XSS...

5CVSS7.3AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/05/21 12:0 a.m.11 views

The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity lies in the lack of security measures for handling web page structures. This allows attackers to carry out XSS attacks.

The vulnerability of the Continuous Integration and Application Delivery system CI/CD of TeamCity by JetBrains is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks remotely...

5.5CVSS5.4AI score0.00604EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/21 12:0 a.m.11 views

The vulnerability of the GlobalProtect Gateway and GlobalProtect Portal operating system PAN-OS allows a perpetrator to execute cross-site scripting attacks.

The vulnerability of the GlobalProtect Gateway and GlobalProtect Portal operating system in PAN-OS is related to insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.5CVSS5.2AI score0.45119EPSS
Exploits8References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/21 12:0 a.m.7 views

The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity lies in the lack of security measures for handling web page structures. This allows attackers to carry out XSS attacks.

The vulnerability of the Continuous Integration and Application Delivery system CI/CD of TeamCity by JetBrains is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks remotely...

5.5CVSS5.4AI score0.0226EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder