Lucene search
K

6 matches found

Microsoft KB
Microsoft KB
added 2024/02/13 8:0 a.m.32 views

Update 22.10 for Microsoft Dynamics 365 Business Central 2023 Release Wave 1 (Application Build 22.10.63195, Platform Build 22.0.63124)

None None...

8CVSS7.5AI score0.01725EPSS
Exploits0
OSV
OSV
added 2019/10/17 5:15 p.m.3 views

CVE-2019-16330

In NCH Express Accounts Accounting v7.02, persistent cross site scripting XSS exists in Invoices/Sales Orders/Items/Customers/Quotes input field. An authenticated unprivileged user can add/modify the Invoices/Sales Orders/Items/Customers/Quotes fields parameter to inject arbitrary JavaScript...

5.4CVSS5.7AI score0.00579EPSS
Exploits1References1
NVD
NVD
added 2019/10/17 5:15 p.m.12 views

CVE-2019-16330

In NCH Express Accounts Accounting v7.02, persistent cross site scripting XSS exists in Invoices/Sales Orders/Items/Customers/Quotes input field. An authenticated unprivileged user can add/modify the Invoices/Sales Orders/Items/Customers/Quotes fields parameter to inject arbitrary JavaScript...

5.4CVSS5.3AI score0.00579EPSS
Exploits1References1
CVE
CVE
added 2019/10/17 4:55 p.m.46 views

CVE-2019-16330

CVE-2019-16330 affects NCH Express Accounts Accounting v7.02, with a persistent XSS in Invoices/Sales Orders/Items/Customers/Quotes input fields. An authenticated unprivileged user can modify these fields to inject arbitrary JavaScript, enabling client-side script execution. Connected documents c...

5.4CVSS5.2AI score0.00579EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/10/17 4:55 p.m.21 views

CVE-2019-16330

In NCH Express Accounts Accounting v7.02, persistent cross site scripting XSS exists in Invoices/Sales Orders/Items/Customers/Quotes input field. An authenticated unprivileged user can add/modify the Invoices/Sales Orders/Items/Customers/Quotes fields parameter to inject arbitrary JavaScript...

5.3AI score0.00579EPSS
Exploits1References1
OSV
OSV
added 2017/10/19 5:29 p.m.4 views

CVE-2017-10329

Vulnerability in the Oracle Global Order Promising component of Oracle E-Business Suite subcomponent: Reschedule Sales Orders. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attack...

9.1CVSS7.3AI score0.02531EPSS
Exploits0References3
Rows per page
Query Builder