CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2021/06/28 7:15 p.m.•10 views

CVE-2020-22608

Cross Site Scripting vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter to include/ajax.search.php...

6.1CVSS0.00216EPSS

OSV•added 2021/06/28 7:15 p.m.•10 views

CVE-2020-22608

Cross Site Scripting vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter to include/ajax.search.php...

6.1CVSS6.4AI score

NVD•added 2021/06/28 7:15 p.m.•12 views

CVE-2020-22609

Cross Site Scripting XSS vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter in include/class.queue.php...

6.1CVSS0.00328EPSS

Prion•added 2021/06/28 7:15 p.m.•18 views

Cross site scripting

Cross Site Scripting XSS vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter in include/class.queue.php...

4.3CVSS6AI score0.00328EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/06/28 6:38 p.m.•11 views

CVE-2020-22609

Cross Site Scripting XSS vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter in include/class.queue.php...

6AI score0.00328EPSS

Cvelist•added 2021/06/28 6:30 p.m.•10 views

CVE-2020-22608

Cross Site Scripting vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter to include/ajax.search.php...

6.1AI score0.00216EPSS

CNNVD•added 2021/06/28 12:0 a.m.•1 views

Enhancesoft osTicket 跨站脚本漏洞

6.1CVSS5.3AI score0.00216EPSS

CNNVD•added 2021/06/28 12:0 a.m.•1 views

Enhancesoft osTicket 跨站脚本漏洞

6.1CVSS5.3AI score0.00328EPSS

Positive Technologies•added 2021/06/16 12:0 a.m.•2 views

PT-2024-11240 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a Use-after-Free problem in the Linux kernel, specifically in the can: j1939 module. The problem occurs when a skb is taken from the per-session skb queue witho...

8.4CVSS7.8AI score0.0002EPSS

Exploits0References19

OSV•added 2021/06/08 12:15 p.m.•0 views

UBUNTU-CVE-2021-22116

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugi...

7.5CVSS6.2AI score0.01026EPSS

Exploits0References5

BDU FSTEC•added 2021/06/02 12:0 a.m.•2 views

The vulnerability of the parse_fix_frase() function in the Exim message forwarding agent, related to buffer overflows in the “queue”, allows an attacker to elevate their privileges within the system and execute arbitrary code.

The vulnerability of the parsefixphrase function in the Exim message forwarding agent is caused by an overflow in the buffer in the “queue”. Exploiting this vulnerability can allow an attacker to increase their privileges within the system and execute arbitrary code...

7.8CVSS0.00049EPSS

Exploits1References16Affected Software6

BDU FSTEC•added 2021/06/02 12:0 a.m.•1 views

The vulnerability of the Work Provider Site Level Administration component of the application for accessing, organizing, and interacting with various types of Oracle Universal Work Queue tasks allows a malicious actor to disclose protected information or gain access to the creation, modification, or deletion of data.

The vulnerability of the Work Provider Site Level Administration component of the application for accessing, organizing, and interacting with various types of Oracle Universal Work Queue tasks is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker...

8.5CVSS0.01221EPSS

Exploits0References3Affected Software1

RedHat Linux•added 2021/06/01 1:24 p.m.•417 views

Moderate: Red Hat Security Advisory: RHV Manager security update (ovirt-engine) [ovirt-4.4.6]

Updated ovirt-engine packages that fix several bugs , security flaws and add various enhancements are now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...

7.2CVSS6.5AI score0.04314EPSS

Exploits3References39

OSV•added 2021/05/31 3:39 p.m.•19 views

GSD-2021-1000024 dmaengine: idxd: fix wq size store permission state

dmaengine: idxd: fix wq size store permission state This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.11.16 by commit...

OSV•added 2021/05/31 3:39 p.m.•7 views

UVI-2021-1000024 dmaengine: idxd: fix wq size store permission state

OSV•added 2021/05/31 3:39 p.m.•7 views

UVI-2021-1000064 sfc: adjust efx->xdp_tx_queue_count with the real number of initialized queues

sfc: adjust efx-xdptxqueuecount with the real number of initialized queues This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...

OSV•added 2021/05/31 3:39 p.m.•8 views

UVI-2021-1000030 dmaengine: idxd: fix wq size store permission state

OSV•added 2021/05/31 3:39 p.m.•9 views

GSD-2021-1000065 sfc: farch: fix TX queue lookup in TX flush done handling

sfc: farch: fix TX queue lookup in TX flush done handling This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...

OSV•added 2021/05/31 3:39 p.m.•11 views

GSD-2021-1000104 sfc: farch: fix TX queue lookup in TX flush done handling