Lucene search
+L

178 matches found

Prion
Prion
added 2022/12/08 10:15 a.m.22 views

Cross site scripting

A vulnerability has been found in LinZhaoguan pb-cms 2.0 and classified as problematic. Affected by this vulnerability is the function IpUtil.getIpAddr. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be use...

4.9CVSS8.8AI score0.00356EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/12/08 10:15 a.m.19 views

Cross site scripting

A vulnerability was found in LinZhaoguan pb-cms 2.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /blog/comment of the component Message Board. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has be...

6.8CVSS8.8AI score0.00536EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/12/08 12:0 a.m.47 views

CVE-2022-4353

CVE-2022-4353 affects LinZhaoguan pb-cms 2.0, specifically the IpUtil.getIpAddr function. The vulnerability allows cross-site scripting and can be exploited remotely, with exploitation publicly disclosed (VDB-215113). Several connected sources corroborate XSS via IpUtil.getIpAddr and remote attac...

5.4CVSS4.4AI score0.00356EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/12/08 12:0 a.m.29 views

CVE-2022-4354 LinZhaoguan pb-cms Message Board comment cross site scripting

A vulnerability was found in LinZhaoguan pb-cms 2.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /blog/comment of the component Message Board. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has be...

4.3CVSS9.2AI score0.00536EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/12/08 12:0 a.m.6 views

CVE-2022-4354 LinZhaoguan pb-cms Message Board comment cross site scripting

A vulnerability was found in LinZhaoguan pb-cms 2.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /blog/comment of the component Message Board. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has be...

4.3CVSS6.4AI score0.00536EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/12/08 12:0 a.m.6 views

PT-2022-26956 · Linzhaoguan · Linzhaoguan Pb-Cms

Name of the Vulnerable Software and Affected Versions: LinZhaoguan pb-cms version 2.0 Description: A vulnerability was found in the Message Board component, specifically affecting some unknown functionality of the file /blog/comment. This issue leads to cross site scripting and can be exploited...

9.6CVSS8.8AI score0.00536EPSS
Exploits1References5
CNNVD
CNNVD
added 2022/12/08 12:0 a.m.5 views

pb-cms 安全漏洞

pb-cms is a content management system by LinZhaoguan Personal Developer. A security vulnerability exists in pb-cms version 2.0, which stems from its IpUtil.getIpAddr function that allows attackers to implement cross-site scripting. The attack method has been made public and can be initiated...

5.4CVSS4.7AI score0.00356EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/12/08 12:0 a.m.30 views

CVE-2022-4353 LinZhaoguan pb-cms IpUtil.getIpAddr cross site scripting

A vulnerability has been found in LinZhaoguan pb-cms 2.0 and classified as problematic. Affected by this vulnerability is the function IpUtil.getIpAddr. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be use...

3.5CVSS5.5AI score0.00356EPSS
Exploits1References2
CVE
CVE
added 2022/12/08 12:0 a.m.52 views

CVE-2022-4354

CVE-2022-4354 affects LinZhaoguan pb-cms 2.0, specifically the /blog/comment function of the Message Board. A cross-site scripting vulnerability is present due to an issue in an unknown functionality, allowing remote exploitation. The vulnerability has been publicly disclosed (VDB-215114). NVD in...

9.6CVSS6.5AI score0.00536EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/08 12:0 a.m.6 views

PT-2022-26955 · Linzhaoguan · Linzhaoguan Pb-Cms

Name of the Vulnerable Software and Affected Versions: LinZhaoguan pb-cms version 2.0 Description: A vulnerability has been found in the function IpUtil.getIpAddr, which leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be use...

5.4CVSS5.1AI score0.00356EPSS
Exploits1References5
Openbugbounty
Openbugbounty
added 2022/11/26 4:36 a.m.13 views

pb-professional.pl Cross Site Scripting vulnerability OBB-3072086

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2022/07/01 8:8 p.m.36 views

GO-2022-0422 Panic when decoding invalid blocks in github.com/ipld/go-codec-dagpb

The dag-pb codec can panic when decoding invalid blocks...

7.5CVSS7.4AI score0.00723EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/04/08 12:0 a.m.5 views

PT-2022-17563 · Unknown · Go-Codec-Dagpb

Name of the Vulnerable Software and Affected Versions: go-codec-dagpb versions prior to 1.3.1 Description: The dag-pb codec can panic when decoding invalid blocks, due to an assumption that the reported link length is accurate. If the block ends before the reported length, it results in a buffer...

7.5CVSS7.4AI score0.00723EPSS
Exploits0References10
Prion
Prion
added 2022/02/11 4:15 p.m.16 views

Null pointer dereference

A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 2021-12-06 in bmpload. When the size information in metadata of the bmp is out of range, it returns without assign memory buffer to pb-pdata and did not exit the program. So the program crashes when it tries to access the pb-data, i...

4.3CVSS6.5AI score0.00893EPSS
Exploits2References2Affected Software1
vulnersOsv
vulnersOsv
added 2020/11/08 12:0 p.m.5 views

cid (>=0.3.2 <=0.4.0), dag-cbor (=0.1.0) +41 more potentially affected by CVE-2020-35909 via multihash (=0.10.1)

multihash CARGO version =0.10.1 is affected by a known vulnerability. The following packages have a transitive dependency on multihash and may be impacted: - cid =0.3.2, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.5.1, =0.0.1, =0.0.2 - libipld =0.1.0 - libipld-base =0.1.0 - libipld-core...

7.8CVSS7.1AI score0.01371EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2020/10/28 11:6 p.m.6 views

pb-autopart.tarad.com Cross Site Scripting vulnerability OBB-1460113

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

0.1AI score
Exploits0
OSV
OSV
added 2020/08/02 12:0 a.m.13 views

OSV-2020-1565 Heap-buffer-overflow in allocate_field

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24586 Crash type: Heap-buffer-overflow WRITE 8 Crash state: allocatefield pbdecstring decodebasicfield...

7.2AI score
Exploits0References1
vulnersOsv
vulnersOsv
added 2020/06/05 4:24 p.m.9 views

ambition-edc (>=0.3.68 <=0.3.72), caluma (>=5.2.1 <=5.6.0) +35 more potentially affected by CVE-2020-13596 via django (>=2.2.0 <=2.2.12)

django PYPI version =2.2.0, =0.3.68, =5.2.1, =0.1.0, =0.0.1, =0.0.1, =0.3.0a0, =0.0.1, =0.0.1, =0.0.26 and more Source cves: CVE-2020-13596 Source advisory: OSV:GHSA-2M34-JCJV-45XF...

6.1CVSS6.7AI score0.02873EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2020/03/05 3:15 p.m.9 views

ambition-edc (>=0.3.68 <=0.3.72), caluma (>=5.2.1 <=5.3.1) +28 more potentially affected by CVE-2020-9402 via django (>=2.2.0 <=2.2.10)

django PYPI version =2.2.0, =0.3.68, =5.2.1, =0.1.0, =0.0.1, =0.0.1, =0.0.1, =0.0.26 - django-smorest =0.1.3 - djangorestframework-simplejwt-captcha =1.1.4 - djpub =0.0.1 and more Source cves: CVE-2020-9402 Source advisory: OSV:PYSEC-2020-36...

8.8CVSS6.7AI score0.22513EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2019/12/14 3:50 p.m.6 views

pb-jb.org Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1039467 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting pb-jb.org website and its...

0.1AI score
Exploits0
Rows per page
Query Builder