Lucene search
+L

79 matches found

Nuclei
Nuclei
added yesterday104 views

ServiceNow - Cross-Site Scripting

ServiceNow through San Diego Patch 4b and Patch 6 contains a cross-site scripting vulnerability in the logout functionality, which can enable an unauthenticated remote attacker to execute arbitrary JavaScript. id: CVE-2022-38463 info: name: ServiceNow - Cross-Site Scripting author: amanrawat...

6.1CVSS6.3AI score0.02258EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/09 10:56 a.m.7 views

CVE-2022-38463

ServiceNow through San Diego Patch 4b and Patch 6 allows reflected XSS in the logout functionality...

6.1CVSS6.3AI score0.02258EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-40768

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00481EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:21 p.m.5 views

CVE-2022-38172

ServiceNow through San Diego Patch 3 allows XSS via the name field during creation of a new dashboard for the Performance Analytics dashboard...

6.1CVSS6.3AI score0.00481EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2024/03/17 10:55 p.m.11 views

san-diego-theater.com Cross Site Scripting vulnerability OBB-3876002

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/02/03 9:36 a.m.9 views

virtualtours.sandiegorealestatephotography.com Cross Site Scripting vulnerability OBB-3848039

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/09/08 12:41 a.m.7 views

sandiegoflowerdelivery.net Cross Site Scripting vulnerability OBB-3655350

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/09/08 12:40 a.m.5 views

sandiegofamilymedicine.com Cross Site Scripting vulnerability OBB-3655349

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/08/23 8:49 p.m.15 views

himalayangrillsandiego.com Cross Site Scripting vulnerability OBB-3614402

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/08/01 5:29 a.m.10 views

san-diego-theater.com Cross Site Scripting vulnerability OBB-3564392

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
OSV
OSV
added 2023/06/13 7:15 p.m.6 views

CVE-2022-43684

ServiceNow has released patches and an upgrade that address an Access Control List ACL bypass issue in ServiceNow Core functionality. Additional Details This issue is present in the following supported ServiceNow releases: Quebec prior to Patch 10 Hot Fix 8b Rome prior to Patch 10 Hot Fix 1 San...

6.5CVSS5.8AI score0.018EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.6 views

ServiceNow 安全漏洞

ServiceNow is a cloud computing platform from US-based ServiceNow, Inc. to help companies manage the digital workflow of their business operations. A security vulnerability exists in multiple ServiceNow products that stems from the presence of incorrect access control. The following products and...

9.9CVSS6.4AI score0.018EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/06/13 12:0 a.m.11 views

PT-2023-14286 · Servicenow · Servicenow

Name of the Vulnerable Software and Affected Versions: ServiceNow versions Quebec prior to Patch 10 Hot Fix 8b ServiceNow versions Rome prior to Patch 10 Hot Fix 1 ServiceNow versions San Diego prior to Patch 7 ServiceNow versions Tokyo prior to Tokyo Patch 1 ServiceNow versions Utah prior to Uta...

9.9CVSS6.2AI score0.018EPSS
Exploits0References12
Openbugbounty
Openbugbounty
added 2023/05/11 6:2 p.m.13 views

sandiegocprclasses.com Cross Site Scripting vulnerability OBB-3322325

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/04/17 12:0 a.m.6 views

PT-2023-14925 · Servicenow · Servicenow

Name of the Vulnerable Software and Affected Versions: ServiceNow versions prior to Quebec Patch 10 Hotfix 11b ServiceNow versions prior to Rome Patch 10 Hotfix 3b ServiceNow versions prior to San Diego Patch 9 ServiceNow versions prior to Tokyo Patch 4 ServiceNow versions prior to Utah GA...

6.1CVSS6.3AI score0.00595EPSS
Exploits0References3
Openbugbounty
Openbugbounty
added 2023/03/20 4:18 p.m.20 views

sandiegocprclasses.com Cross Site Scripting vulnerability OBB-3228518

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
CNNVD
CNNVD
added 2023/01/13 12:0 a.m.6 views

ServiceNow San Diego Patch和Rome Patch 跨站脚本漏洞

ServiceNow San Diego Patch and ServiceNow Rome Patch are both products of ServiceNow, Inc.ServiceNow San Diego Patch is a series of patches.ServiceNow Rome Patch is an application patch. ServiceNow San Diego Patch and Rome Patch have a security vulnerability that stems from the presence of...

5.4CVSS5.7AI score0.00439EPSS
Exploits0References2
CVE
CVE
added 2023/01/12 12:0 a.m.45 views

CVE-2022-42704

CVE-2022-42704 is a cross-site scripting (XSS) vulnerability in ServiceNow’s Employee Service Center (ESC) and Service Portal (SP) affecting Quebec through San Diego releases. The issue allows remote attackers to inject arbitrary web script via the Standard Ticket Conversations widget, with impac...

5.4CVSS5.3AI score0.00439EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/01/12 12:0 a.m.4 views

PT-2023-14143 · Servicenow · Servicenow

Name of the Vulnerable Software and Affected Versions: ServiceNow versions Quebec through San Diego Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script via the Standard Ticket Conversations widget in the Employee Service Center and Service Portal...

5.4CVSS6.3AI score0.00439EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/01/12 12:0 a.m.29 views

CVE-2022-42704

A cross-site scripting XSS vulnerability in Employee Service Center esc and Service Portal sp in ServiceNow Quebec, Rome, and San Diego allows remote attackers to inject arbitrary web script via the Standard Ticket Conversations widget...

5.5AI score0.00439EPSS
Exploits0References1
Rows per page
Query Builder