Lucene search
K

4 matches found

OSV
OSV
added 2024/04/18 10:15 p.m.5 views

CVE-2024-30927

Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the racer-results.php component...

6.3CVSS6.2AI score0.00551EPSS
Exploits2References2
CVE
CVE
added 2024/04/18 12:0 a.m.54 views

CVE-2024-30927

CVE-2024-30927 affects DerbyNet v9.0 and earlier, with a Cross Site Scripting vulnerability in the racer-results.php component. The issue stems from improper handling/validation of user-supplied input (notably the racerid parameter), allowing an attacker to inject arbitrary script that can be exe...

6.3CVSS7.2AI score0.00551EPSS
Exploits2References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/05 12:0 a.m.7 views

PT-2024-23677 · Derbynet · Derbynet

Name of the Vulnerable Software and Affected Versions: DerbyNet versions 9.0 and below Description: The issue allows attackers to execute arbitrary code via the racer-results.php component. This is a Cross Site Scripting vulnerability. Recommendations: For DerbyNet versions 9.0 and below, conside...

6.3CVSS7.5AI score0.00551EPSS
Exploits2References6
BDU FSTEC
BDU FSTEC
added 2021/05/12 12:0 a.m.8 views

The vulnerability of the India Localization sub-component and the Results component of Oracle Payables in the Oracle E-Business Suite automation system allows a perpetrator to gain unauthorized access to the device.

The vulnerability of the India Localization sub-component and the Results component of Oracle Payables in the Oracle E-Business Suite system are related to code errors. Exploiting this vulnerability may allow an attacker, operating remotely, to gain unauthorized access to the device through HTTP...

8.5CVSS6.9AI score0.00987EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder