Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-3404

Malware in sbrugna...

3.5CVSS6.4AI score0.00965EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2015/07/29 12:0 a.m.25 views

JVN#17522792: yoyaku_v41 vulnerable to OS command injection

yoyakuv41 provided by Webservice-DIC is a software to manage conference room reservations. yoyakuv41 contains an OS command injection vulnerability CWE-78. Impact An arbitrary OS command may be executed with the privileges of the web server on the server where yoyakuv41 is running. Solution Do no...

7.5CVSS7.2AI score0.01383EPSS
Exploits0
NVD
NVD
added 2015/04/21 4:59 p.m.16 views

CVE-2015-3359

Multiple cross-site scripting XSS vulnerabilities in the Room Reservations module before 7.x-1.1 for Drupal allow remote authenticated users with the "Administer the room reservations system" permission to inject arbitrary web script or HTML via the 1 node title of a "Room Reservations Category" ...

3.5CVSS5.5AI score0.00965EPSS
Exploits0References4
Prion
Prion
added 2015/04/21 4:59 p.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Room Reservations module before 7.x-1.1 for Drupal allow remote authenticated users with the "Administer the room reservations system" permission to inject arbitrary web script or HTML via the 1 node title of a "Room Reservations Category" ...

3.5CVSS5.6AI score0.00965EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2015/04/21 4:0 p.m.51 views

CVE-2015-3359

Summary: CVE-2015-3359 concerns multiple XSS vulnerabilities in the Drupal Room Reservations module (7.x-1.x) prior to 7.x-1.1. Affected component: Room Reservations module for Drupal 7.x. Root cause: module fails to sufficiently sanitize input in the node title of Room Reservations Category and ...

3.5CVSS5.5AI score0.00965EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2015/04/21 4:0 p.m.18 views

CVE-2015-3359

Multiple cross-site scripting XSS vulnerabilities in the Room Reservations module before 7.x-1.1 for Drupal allow remote authenticated users with the "Administer the room reservations system" permission to inject arbitrary web script or HTML via the 1 node title of a "Room Reservations Category" ...

5.5AI score0.00965EPSS
Exploits0References4
CNVD
CNVD
added 2015/01/20 12:0 a.m.2 views

Multiple Cross-Site Scripting Vulnerabilities in Drupal Room Reservations Module

Drupal is a free and open source content management system developed in PHP. Multiple cross-site scripting vulnerabilities exist in the Drupal Room Reservations module because it fails to properly filter user-supplied input. An attacker could use these vulnerabilities to execute arbitrary script...

4.9CVSS6.9AI score0.0158EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/09/11 12:0 a.m.12 views

JVN#05857667 Webservice-DIC yoyaku_v41 vulnerable to command injection

yoyakuv41 from Webservice-DIC is a software to manage conference room reservations. yoyakuv41 contains a command injection vulnerability. This vulnerability is different from JVN80436657. Impact An arbitrary command could be executed with the privilege of the server where yoyakuv41 runs. Solution...

7.6AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/07/31 12:0 a.m.19 views

JVN#80436657 Webservice-DIC yoyaku_v41 vulnerable to command injection

yoyakuv41 from Webservice-DIC is a software to manage conference room reservations. yoyakuv41 contains a command injection vulnerability. Impact An arbitrary command could be executed with the privilege of the server where yoyakuv41 runs. Solution Update the Software Update to the latest version...

7.6AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/05/22 12:0 a.m.35 views

JVN#57036470 Cross-site scripting vulnerability in leger (free edition)

leger free edition from 'AD2000' is a software to manage conference room reservations. leger free edition contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest version according to the...

4.3CVSS5.9AI score0.01065EPSS
Exploits0
Rows per page
Query Builder