Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7649 matches found

UbuntuCve
UbuntuCveadded 2019/05/15 8:29 p.m.28 views

CVE-2019-10111

An issue was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. It allows persistent XSS in the merge request "resolve conflicts" page...

5.4CVSS6.5AI score0.00963EPSS
Exploits1References2
NVD
NVDadded 2019/05/15 8:29 p.m.20 views

CVE-2019-10111

An issue was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. It allows persistent XSS in the merge request "resolve conflicts" page...

5.4CVSS5.5AI score0.00963EPSS
Exploits1References3
Prion
Prionadded 2019/05/15 8:29 p.m.22 views

Cross site scripting

An issue was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. It allows persistent XSS in the merge request "resolve conflicts" page...

3.5CVSS5.3AI score0.00963EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVEadded 2019/05/15 7:28 p.m.25 views

CVE-2019-10111

Removed by vendor...

5.4CVSS6.4AI score0.00963EPSS
Exploits1
CVE
CVEadded 2019/05/15 7:28 p.m.63 views

CVE-2019-10111

CVE-2019-10111 affects GitLab Community and Enterprise Edition prior to 11.7.8, 11.8.x prior to 11.8.4, and 11.9.x prior to 11.9.2, enabling persistent XSS on the merge request “resolve conflicts” page. The underlying issue is an XSS vulnerability in that UI path, confirmed across multiple source...

5.4CVSS5.7AI score0.00963EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2019/05/15 7:28 p.m.24 views

CVE-2019-10111

An issue was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. It allows persistent XSS in the merge request "resolve conflicts" page...

5.8AI score0.00963EPSS
Exploits1References3
OSV
OSVadded 2019/05/15 5:29 p.m.3 views

CVE-2019-1728

A vulnerability in the Secure Configuration Validation functionality of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to run arbitrary commands at system boot time with the privileges of root. The vulnerability is due to a lack of proper validation of...

6.7CVSS6.8AI score0.00251EPSS
Exploits0References2
Cvelist
Cvelistadded 2019/05/15 4:45 p.m.21 views

CVE-2019-1728 Cisco FXOS and NX-OS Software Secure Configuration Bypass Vulnerability

A vulnerability in the Secure Configuration Validation functionality of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to run arbitrary commands at system boot time with the privileges of root. The vulnerability is due to a lack of proper validation of...

6.7CVSS6.5AI score0.00251EPSS
Exploits0References2
The Hacker News
The Hacker Newsadded 2019/05/14 8:54 a.m.103 views

Flaw Affecting Millions of Cisco Devices Let Attackers Implant Persistent Backdoor

Researchers have discovered a severe vulnerability in Cisco products that could allow attackers to implant persistent backdoor on wide range devices used in enterprises and government networks, including routers, switches, and firewalls. Dubbed Thrangrycat or 😾😾😾, the vulnerability, discovered by...

9CVSS1.5AI score0.05516EPSS
Exploits0
The Hacker News
The Hacker Newsadded 2019/05/14 8:54 a.m.3 views

Flaw Affecting Millions of Cisco Devices Let Attackers Implant Persistent Backdoor

Researchers have discovered a severe vulnerability in Cisco products that could allow attackers to implant persistent backdoor on wide range devices used in enterprises and government networks, including routers, switches, and firewalls. Dubbed Thrangrycat or 😾😾😾, the vulnerability, discovered by...

9CVSS7.9AI score0.05516EPSS
Exploits0
NVD
NVDadded 2019/05/13 1:29 p.m.25 views

CVE-2018-16623

Kirby V2.5.12 is prone to a Persistent XSS attack via the Title of the "Site options" in the admin panel dashboard dropdown...

4.8CVSS4.9AI score0.00683EPSS
Exploits1References1
OSV
OSVadded 2019/05/13 1:29 p.m.24 views

CVE-2018-16623

Kirby V2.5.12 is prone to a Persistent XSS attack via the Title of the "Site options" in the admin panel dashboard dropdown...

4.8CVSS6AI score0.00683EPSS
Exploits1References1
Prion
Prionadded 2019/05/13 1:29 p.m.21 views

Cross site scripting

Kirby V2.5.12 is prone to a Persistent XSS attack via the Title of the "Site options" in the admin panel dashboard dropdown...

3.5CVSS4.8AI score0.00683EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2019/05/13 12:57 p.m.26 views

CVE-2018-16623

Kirby V2.5.12 is prone to a Persistent XSS attack via the Title of the "Site options" in the admin panel dashboard dropdown...

4.9AI score0.00683EPSS
Exploits1References1
CVE
CVEadded 2019/05/13 12:57 p.m.47 views

CVE-2018-16623

Kirby CMS version 2.5.12 (CVE-2018-16623) is described in the provided documents as prone to a Persistent XSS via the Title field in the admin panel's Site options dropdown. The issue is consistently reported across CVE records and vendor/third-party sources in the connected documents. The availa...

4.8CVSS4.8AI score0.00683EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2019/05/08 4:29 p.m.15 views

Design/Logic Flaw

Persistent XSS has been found in the OneShield Policy Dragon Core framework before 5.1.10. Remote adversaries can inject malicious JavaScript into textboxes decorated with type string, which is subsequently stored to the applicable data store. This can be exploited remotely by both authenticated...

4.3CVSS6AI score0.00881EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2019/05/08 1:29 p.m.14 views

Design/Logic Flaw

An issue was discovered in app/View/Elements/Events/View/valuefield.ctp in MISP before 2.4.107. There is persistent XSS via link type attributes with javascript:// links...

4.3CVSS5.9AI score0.008EPSS
Exploits0References1Affected Software1
Prion
Prionadded 2019/05/08 1:29 p.m.17 views

Cross site scripting

An issue was discovered in app/webroot/js/misp.js in MISP before 2.4.107. There is persistent XSS via image names in titles, as demonstrated by a screenshot...

4.3CVSS5.8AI score0.00809EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2019/05/08 1:29 p.m.15 views

CVE-2019-11814

An issue was discovered in app/webroot/js/misp.js in MISP before 2.4.107. There is persistent XSS via image names in titles, as demonstrated by a screenshot...

6.1CVSS6AI score0.00809EPSS
Exploits0References1
NVD
NVDadded 2019/05/08 1:29 p.m.10 views

CVE-2019-11813

An issue was discovered in app/View/Elements/Events/View/valuefield.ctp in MISP before 2.4.107. There is persistent XSS via link type attributes with javascript:// links...

6.1CVSS6AI score0.008EPSS
Exploits0References1
Rows per page
Query Builder