Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:40 p.m.8 views

CVE-2025-40904

A Stored HTML Injection vulnerability was discovered in the Smart Polling functionality due to improper validation of an input parameter. An authenticated user with limited privileges can push malicious remote strategies containing HTML tags through the sync. When a victim views the affected remo...

6.5CVSS5.6AI score0.00186EPSS
Exploits0References1
NVD
NVD
added 2026/05/19 2:16 p.m.22 views

CVE-2025-40904

A Stored HTML Injection vulnerability was discovered in the Smart Polling functionality due to improper validation of an input parameter. An authenticated user with limited privileges can push malicious remote strategies containing HTML tags through the sync. When a victim views the affected remo...

6.5CVSS0.00186EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/19 1:23 p.m.5 views

CVE-2025-40904

A Stored HTML Injection vulnerability was discovered in the Smart Polling functionality due to improper validation of an input parameter. An authenticated user with limited privileges can push malicious remote strategies containing HTML tags through the sync. When a victim views the affected remo...

6.5CVSS5.8AI score0.00186EPSS
Exploits0References2
NOZOMI
NOZOMI
added 2026/05/19 12:0 a.m.8 views

HTML injection in Smart Polling in Guardian/CMC before 26.1.0

Summary A Stored HTML Injection vulnerability was discovered in the Smart Polling functionality due to improper validation of an input parameter. Impact An authenticated user with limited privileges can push malicious remote strategies containing HTML tags through the sync. When a victim views th...

6.5CVSS5.8AI score0.00186EPSS
Exploits0Affected Software2
Rows per page
Query Builder