123 matches found
CVE-2024-46079
Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting XSS in projnew.php via the Descricao parameter...
CVE-2024-46082
Scriptcase v.9.10.023 and before is vulnerable to Cross Site Scripting XSS in nmcor.php via the form and field parameters...
CVE-2024-46082
Scriptcase v9.10.023 and earlier are vulnerable to Cross Site Scripting (XSS) in nm_cor.php via the form and field parameters. The description consistently states an XSS flaw without providing exploit details or a confirmed patch in the supplied sources. Some documents (PT-Security) suggest restr...
PT-2024-31901 · Unknown · Scriptcase
Name of the Vulnerable Software and Affected Versions: Scriptcase versions 9.10.023 and earlier Description: The issue allows an authenticated user to craft malicious payloads in the To-Do List, triggering a stored Cross Site Scripting XSS attack when the assigned user interacts with the task. Th...
CVE-2024-46083
Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting XSS. An authenticated user can craft malicious payloads using the messages feature, which allows the injection of malicious code into any user's account on the platform. It is important to note that regular users can trigger...
CVE-2024-46080
Scriptcase v9.10.023 and before is vulnerable to Remote Code Execution RCE via the nmzip function...
Scriptcase 安全漏洞
Scriptcase is a low-code platform for rapid application development from Scriptcase, Inc. A security vulnerability exists in Scriptcase v9.10.023 and earlier versions, which stems from the pass being susceptible to Remote Code Execution RCE attacks...
Scriptcase 安全漏洞
Scriptcase is a low-code platform for rapid application development from Scriptcase, Inc. A security vulnerability exists in Scriptcase v9.10.023 and prior versions that stems from vulnerability to cross-site scripting XSS attacks, where an authenticated user can craft a malicious payload using t...
PT-2024-31900 · Unknown · Scriptcase
Name of the Vulnerable Software and Affected Versions: Scriptcase versions 9.10.023 and earlier Description: The issue is a Remote Code Execution RCE vulnerability caused by the nm zip function. This allows for remote code execution, potentially leading to unauthorized access and control of the...
PT-2024-31902 · Unknown · Scriptcase
Name of the Vulnerable Software and Affected Versions: Scriptcase versions 9.10.023 and earlier Description: The issue is related to Cross Site Scripting XSS in the nm cor.php file, specifically via the form and field parameters. This allows for potential malicious script injection...
PT-2024-31903 · Unknown · Scriptcase
Name of the Vulnerable Software and Affected Versions: Scriptcase versions 9.10.023 and earlier Description: The issue allows an authenticated user to craft malicious payloads using the messages feature, enabling the injection of malicious code into any user's account on the platform. Regular use...
CVE-2024-46081
Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting XSS. An authenticated user can craft malicious payloads in the To-Do List. The assigned user will trigger a stored XSS, which is particularly dangerous because tasks are assigned to various users on the platform...
CVE-2024-46083
Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting XSS. An authenticated user can craft malicious payloads using the messages feature, which allows the injection of malicious code into any user's account on the platform. It is important to note that regular users can trigger...
PT-2024-31904 · Unknown · Scriptcase
Name of the Vulnerable Software and Affected Versions: Scriptcase versions 9.10.023 and earlier Description: The issue is a Remote Code Execution RCE vulnerability via the nm unzip function. This allows for remote code execution, potentially leading to unauthorized access and control of the syste...
CVE-2024-46082
Scriptcase v.9.10.023 and before is vulnerable to Cross Site Scripting XSS in nmcor.php via the form and field parameters...
CVE-2024-46080
Scriptcase v9.10.023 and before is vulnerable to Remote Code Execution RCE via the nmzip function...
Scriptcase 安全漏洞
Scriptcase is a low-code platform for rapid application development from Scriptcase, Inc. A security vulnerability exists in Scriptcase version 9.10.023 and earlier that stems from vulnerability to remote code execution RCE attacks...
CVE-2024-46084
CVE-2024-46084 affects Scriptcase 9.10.023 and earlier, describing a Remote Code Execution via the nm_unzip function. Documents list the affected version and the vulnerability type, with CVSS v3.1 base score 8.0 (HIGH). A temporary workaround mentioned in PT-2024-31904 is to disable the nm_unzip ...
CVE-2024-46079
Affected product: Scriptcase v9.10.023 and earlier. Vulnerability: Cross Site Scripting (XSS) in proj_new.php via the Descricao parameter. Root cause / nature: XSS exposure reported across multiple sources; CVSS 3.1 base score 6.1 (Medium) with Network attack vector, low attack complexity, no pri...
Scriptcase 安全漏洞
Scriptcase is a low-code platform for rapid application development from Scriptcase, Inc. A security vulnerability exists in Scriptcase v9.10.023 and earlier versions that stems from vulnerability to cross-site scripting XSS attacks...