48 matches found
EUVD-2026-21342
Livestatus injection in the monitoring quicksearch in Checkmk 2.5.0b4 allows an authenticated attacker to inject livestatus commands via the search query due to insufficient input sanitization in search filter plugins...
CVE-2026-33455
Livestatus injection in the monitoring quicksearch in Checkmk 2.5.0b4 allows an authenticated attacker to inject livestatus commands via the search query due to insufficient input sanitization in search filter plugins...
UBUNTU-CVE-2026-33455
Livestatus injection in the monitoring quicksearch in Checkmk 2.5.0b4 allows an authenticated attacker to inject livestatus commands via the search query due to insufficient input sanitization in search filter plugins...
CVE-2026-33455 Livestatus injection in monitoring quicksearch
Livestatus injection in the monitoring quicksearch in Checkmk 2.5.0b4 allows an authenticated attacker to inject livestatus commands via the search query due to insufficient input sanitization in search filter plugins...
CVE-2026-33455
Livestatus injection in the monitoring quicksearch in Checkmk 2.5.0b4 allows an authenticated attacker to inject livestatus commands via the search query due to insufficient input sanitization in search filter plugins...
CVE-2026-33455
CVE-2026-33455 affects Checkmk prior to version 2.5.0b4, where the Livestatus injection vulnerability exists in the monitoring quicksearch. The root cause is insufficient input sanitization in search filter plugins, enabling an authenticated attacker to inject Livestatus commands via the search q...
CVE-2026-33455 Livestatus injection in monitoring quicksearch
Livestatus injection in the monitoring quicksearch in Checkmk 2.5.0b4 allows an authenticated attacker to inject livestatus commands via the search query due to insufficient input sanitization in search filter plugins...
PT-2026-31898
Name of the Vulnerable Software and Affected Versions Checkmk versions prior to 2.5.0b4 Description A flaw exists in the monitoring quicksearch functionality of Checkmk that allows an authenticated attacker to inject Livestatus commands through the search query. This is due to insufficient input...
EUVD-2021-23057
Malware in sbrugna...
Malicious code in com.unity.quicksearch (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-47633 Malicious code in com.unity.quicksearch (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2021-36455
SQL Injection vulnerability in Naviwebs Navigate CMS 2.9 via the quicksearch parameter in \lib\packages\comments\comments.php...
CVE-2019-25156
A vulnerability classified as problematic was found in dstar2018 Agency up to 61. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument QSType/QuickSearch leads to cross site scripting. The attack can be launched remotely. The patch is...
PT-2023-11381 · Unknown · Dstar2018 Agency
Name of the Vulnerable Software and Affected Versions: dstar2018 Agency versions up to 61 Description: A problematic vulnerability was found in an unknown functionality of the file search.php, where the manipulation of the argument QSType/QuickSearch leads to cross-site scripting. The attack can ...
ImpressCMS Cross-site Scripting vulnerability via quicksearch_ContentContent parameter
Cross-site scripting XSS vulnerability in modules/content/admin/content.php in ImpressCMS 1.2.3 Final, and possibly other versions before 1.2.4, allows remote attackers to inject arbitrary web script or HTML via the quicksearchContentContent parameter...
GHSA-39VM-RVWH-Q86J ImpressCMS Cross-site Scripting vulnerability via quicksearch_ContentContent parameter
Cross-site scripting XSS vulnerability in modules/content/admin/content.php in ImpressCMS 1.2.3 Final, and possibly other versions before 1.2.4, allows remote attackers to inject arbitrary web script or HTML via the quicksearchContentContent parameter...
CVE-2021-36455
SQL Injection vulnerability in Naviwebs Navigate CMS 2.9 via the quicksearch parameter in \lib\packages\comments\comments.php...
CVE-2021-36455
SQL Injection vulnerability in Naviwebs Navigate CMS 2.9 via the quicksearch parameter in \lib\packages\comments\comments.php...
Sql injection
SQL Injection vulnerability in Naviwebs Navigate CMS 2.9 via the quicksearch parameter in \lib\packages\comments\comments.php...
CVE-2021-36455
SQL Injection vulnerability in Naviwebs Navigate CMS 2.9 via the quicksearch parameter in \lib\packages\comments\comments.php...