Lucene search
K

7657 matches found

CVE
CVE
added 2020/03/10 2:38 p.m.57 views

CVE-2019-12442

CVE-2019-12442 affects GitLab Enterprise Edition 11.7–11.11. The issue is a persistent cross-site scripting (XSS) vulnerability on child epics caused by lack of input validation and insufficient output encoding on the epic details page. This is detailed across multiple sources (GitLab advisories,...

6.1CVSS5.9AI score0.00691EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/03/10 2:38 p.m.18 views

CVE-2019-12442

An issue was discovered in GitLab Enterprise Edition 11.7 through 11.11. The epic details page contained a lack of input validation and output encoding issue which resulted in a persistent XSS vulnerability on child epics...

6.1AI score0.00691EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2020/03/10 12:0 a.m.113 views

YzmCMS 5.5 Cross Site Scripting

Exploit Title: YzmCMS 5.5 - 'url' Persistent Cross-Site Scripting Google Dork: N/A Date: 2020-03-10 Exploit Author: En Vendor Homepage: https://github.com/yzmcms/yzmcms Software Link: https://github.com/yzmcms/yzmcms Version: V5.5 Category: Web Application Patched Version: unpatched Tested on:...

7.4AI score
Exploits0
CISA
CISA
added 2020/03/10 12:0 a.m.10 views

Intel Releases Security Updates

Intel has released security updates to address vulnerabilities in multiple products. An authenticated attacker with local access could exploit some of these vulnerabilities to gain escalation of privileges. The Cybersecurity and Infrastructure Security Agency CISA encourages users and...

7.6AI score
Exploits0References9
OSV
OSV
added 2020/03/09 7:15 p.m.12 views

CVE-2020-10247

MISP 2.4.122 has Persistent XSS in the sighting popover tool. This is related to app/View/Elements/Events/View/sightingfield.ctp...

6.1CVSS6AI score
Exploits0References2
NVD
NVD
added 2020/03/09 7:15 p.m.12 views

CVE-2020-10247

MISP 2.4.122 has Persistent XSS in the sighting popover tool. This is related to app/View/Elements/Events/View/sightingfield.ctp...

6.1CVSS6AI score0.00835EPSS
Exploits0References2
Prion
Prion
added 2020/03/09 7:15 p.m.14 views

Design/Logic Flaw

MISP 2.4.122 has Persistent XSS in the sighting popover tool. This is related to app/View/Elements/Events/View/sightingfield.ctp...

4.3CVSS5.9AI score0.00835EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/03/09 6:31 p.m.16 views

CVE-2020-10247

MISP 2.4.122 has Persistent XSS in the sighting popover tool. This is related to app/View/Elements/Events/View/sightingfield.ctp...

6AI score0.00835EPSS
Exploits0References2
CVE
CVE
added 2020/03/09 6:31 p.m.70 views

CVE-2020-10247

Vulnerability: CVE-2020-10247 affects MISP 2.4.122, where a Persistent XSS exists in the sighting popover tool (file app/View/Elements/Events/View/sighting_field.ctp). Impact: can store/trigger XSS in user-visible popovers. Root cause: persistent cross-site scripting in the sighting_field.ctp com...

6.1CVSS5.9AI score0.00835EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2020/03/09 12:0 a.m.5 views

PT-2020-12003 · Misp · Misp

Name of the Vulnerable Software and Affected Versions: MISP version 2.4.122 Description: The issue is related to a Persistent XSS in the sighting popover tool, specifically in the app/View/Elements/Events/View/sighting field.ctp file. Recommendations: For MISP version 2.4.122, consider disabling...

6.1CVSS6AI score0.00835EPSS
Exploits0References5
Lenovo
Lenovo
added 2020/03/06 7:38 p.m.11 views

Intel Optane DC Persistent Memory Module Management Software - Lenovo Support US

No description provided...

7.8CVSS7.7AI score0.00337EPSS
Exploits0
Lenovo
Lenovo
added 2020/03/06 7:38 p.m.16 views

Intel Optane DC Persistent Memory Module Management Software - Lenovo Support US

Lenovo Security Advisory: LEN-30556 Potential Impact: Escalation of privilege Severity: Medium Scope of Impact: Industry-wide CVE Identifier: CVE-2020-0546 Summary Description: Intel reported potential security vulnerabilities in Intel Optane DC Persistent Memory Module Management Software which...

4.6CVSS3.7AI score0.00337EPSS
Exploits0
0day.today
0day.today
added 2020/03/03 12:0 a.m.126 views

Alfresco 5.2.4 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Alfresco 5.2.4 - Persistent Cross-Site Scripting Exploit Author: Romain LOISEL & Alexandre ZANNI https://pwn.by/noraj - Pentesters from Orange Cyberdefense France Vendor Homepage: https://www.alfresco.com/ Software Link:...

3.5CVSS5.8AI score0.0317EPSS
Exploits7
exploitpack
exploitpack
added 2020/03/03 12:0 a.m.67 views

Alfresco 5.2.4 - Persistent Cross-Site Scripting

Alfresco 5.2.4 - Persistent Cross-Site Scripting Exploit Title: Alfresco 5.2.4 - Persistent Cross-Site Scripting Date: 2020-03-02 Exploit Author: Romain LOISEL & Alexandre ZANNI https://pwn.by/noraj - Pentesters from Orange Cyberdefense France Vendor Homepage: https://www.alfresco.com/ Software...

3.5CVSS5.3AI score0.0317EPSS
Exploits7
Exploit DB
Exploit DB
added 2020/03/03 12:0 a.m.605 views

Alfresco 5.2.4 - Persistent Cross-Site Scripting

Exploit Title: Alfresco 5.2.4 - Persistent Cross-Site Scripting Date: 2020-03-02 Exploit Author: Romain LOISEL & Alexandre ZANNI https://pwn.by/noraj - Pentesters from Orange Cyberdefense France Vendor Homepage: https://www.alfresco.com/ Software Link: https://www.alfresco.com/ecm-software Versio...

5.4CVSS5.5AI score0.0317EPSS
Exploits7
NVD
NVD
added 2020/02/25 6:15 p.m.14 views

CVE-2020-9019

The WPJobBoard plugin 5.5.3 for WordPress allows Persistent XSS via the Add Job form, as demonstrated by title and Description...

6.1CVSS6.1AI score0.01641EPSS
Exploits1References3
OSV
OSV
added 2020/02/25 6:15 p.m.2 views

CVE-2020-9019

The WPJobBoard plugin 5.5.3 for WordPress allows Persistent XSS via the Add Job form, as demonstrated by title and Description...

6.1CVSS6.4AI score0.01641EPSS
Exploits1References3
Prion
Prion
added 2020/02/25 6:15 p.m.10 views

Design/Logic Flaw

The WPJobBoard plugin 5.5.3 for WordPress allows Persistent XSS via the Add Job form, as demonstrated by title and Description...

4.3CVSS6AI score0.01641EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/02/25 5:20 p.m.18 views

CVE-2020-9019

The WPJobBoard plugin 5.5.3 for WordPress allows Persistent XSS via the Add Job form, as demonstrated by title and Description...

6.1AI score0.01641EPSS
Exploits1References3
CVE
CVE
added 2020/02/25 5:20 p.m.94 views

CVE-2020-9019

CVE-2020-9019 concerns the WordPress WPJobBoard plugin version 5.5.3, which permits a persistent cross-site scripting (XSS) attack through the Add Job form in the frontend. The vulnerability targets fields like Title and Description, allowing injected script payloads to persist and potentially ex...

6.1CVSS6AI score0.01641EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder