Lucene search
K

631 matches found

BDU FSTEC
BDU FSTEC
added 2016/03/11 12:0 a.m.8 views

The vulnerability of Microsoft Excel editors allows a hacker to inject arbitrary Web or HTML code.

The vulnerability of Microsoft Excel editors exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to inject arbitrary Web or HTML code through a specially crafted email message...

4.3CVSS5.7AI score0.1115EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2015/12/15 12:0 a.m.7 views

The vulnerability of Microsoft Exchange Server servers allows a hacker to inject arbitrary web or HTML code.

The vulnerability in Microsoft Exchange Server web applications exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code remotely...

4.3CVSS5.6AI score0.11163EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2015/12/14 12:0 a.m.8 views

The vulnerability of the ColdFusion interpreter allows attackers to inject any web script or HTML code.

The vulnerability of the ColdFusion interpreter exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to inject any desired web script or HTML code remotely...

4.3CVSS5.5AI score0.03119EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2015/12/14 12:0 a.m.6 views

The vulnerability relates to the EMC Documentum Administrator, a tool for managing electronic document systems; the EMC Documentum Digital Asset Management, a tool for managing multimedia materials within electronic document systems; the EMC Documentum TaskSpace, a tool for accessing the repository of electronic document systems; and the EMC Documentum Web Publisher, a system for managing web projects. The vulnerability also affects the web interface that provides access to the EMC Documentum Webtop repository. This vulnerability allows an attacker to inject arbitrary web scripts or HTML code.

The vulnerability of the EMC Documentum Administrator, a tool for managing electronic document systems, and the EMC Documentum Digital Asset Management tool for managing multimedia materials within electronic document systems, as well as the tools for accessing the EMC Documentum TaskSpace...

3.5CVSS5.6AI score0.01075EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2015/12/14 12:0 a.m.9 views

The vulnerability of the ColdFusion interpreter allows attackers to inject any web script or HTML code.

The vulnerability of the ColdFusion interpreter exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to inject any desired web script or HTML code remotely...

4.3CVSS5.5AI score0.03119EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2015/11/20 12:0 a.m.7 views

Vulnerability of the microprogramming software used in Micrologix 1100 and 1400 programmable logic controllers, allowing intruders to inject arbitrary web or HTML code

The vulnerability of Micrologix 1100 and 1400 microprogrammed logic controllers’ web servers exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code remotely...

4.3CVSS5.6AI score0.02836EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2015/11/05 12:0 a.m.8 views

The vulnerability of the web application for data synchronization with ownCloud allows a hacker to inject arbitrary web or HTML code.

The vulnerability of the web application for data synchronization with ownCloud exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code using special symbols within the file name...

3.5CVSS5.6AI score0.00826EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/09/08 12:0 a.m.9 views

The vulnerability of the Mac OS X operating system allows a hacker to inject arbitrary web or HTML code.

The vulnerability of the Quick Look component in the Mac OS X operating system exists due to the lack of security measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to inject arbitrary HTML code using a previously visited website, during t...

4.3CVSS7.4AI score0.01728EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/08/07 12:0 a.m.7 views

The vulnerability of the Moodle learning management system allows a hacker to inject arbitrary web or HTML code.

The vulnerability of the externalformattext function in the lib/externallib.php component of the Moodle learning management system exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to inject any desired web or...

3.5CVSS7.2AI score0.01459EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/08/07 12:0 a.m.7 views

The vulnerability of the Security SiteProtector System’s security protection mechanism allows a hacker to execute arbitrary web or HTML code.

The vulnerability of the Security SiteProtector System security system exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary web or HTML code remotely...

3.5CVSS5.8AI score0.00783EPSS
Exploits0References2Affected Software1
Drupal
Drupal
added 2013/08/07 12:0 a.m.25 views

SA-CONTRIB-2013-066 - Monster Menus - Multiple Vulnerabilities

Monster Menus enables you to create granular page permissions, and apply them to a hierarchical page structure. The mmwebform submodule enables you to assign permissions derived from Monster Menus to webform forms. The module doesn't sufficiently filter titles entered into page settings and echoe...

2.1CVSS5.7AI score0.01099EPSS
Exploits1References9
Rows per page
Query Builder