Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:3 a.m.8 views

CVE-2023-27151

openCRX 5.2.0 was discovered to contain an HTML injection vulnerability for Search Criteria-Activity Number in the Saved Search Activity via the Name, Description, or Activity Number field...

6.1CVSS7.5AI score0.00454EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/10/11 12:0 a.m.4 views

The vulnerability of the External Lookups technology in the Splunk Enterprise platform for operational analysis allows a malicious actor to escalate their privileges and execute arbitrary commands.

The vulnerability of Splunk Enterprise’s External Lookups technology relates to the improper elimination of certain elements used in the operating system’s command set. This occurs due to the use of data models for detecting unauthorized searches called SearchActivity. Exploiting this vulnerabili...

9CVSS5.8AI score0.00996EPSS
Exploits0References6Affected Software2
NVD
NVD
added 2024/02/29 1:38 a.m.18 views

CVE-2023-27151

openCRX 5.2.0 was discovered to contain an HTML injection vulnerability for Search Criteria-Activity Number in the Saved Search Activity via the Name, Description, or Activity Number field...

6.1CVSS7.2AI score0.00454EPSS
Exploits1References2
CVE
CVE
added 2023/12/25 12:0 a.m.26 views

CVE-2023-27151

CVE-2023-27151 affects openCRX 5.2.0, where an HTML injection vulnerability exists in the Saved Search Activity’s Search Criteria - specifically via the Name, Description, or Activity Number fields. The cited sources describe a vulnerability in the OpenCRX application and note an HTML injection t...

6.1CVSS7.4AI score0.00454EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/25 12:0 a.m.16 views

CVE-2023-27151

openCRX 5.2.0 was discovered to contain an HTML injection vulnerability for Search Criteria-Activity Number in the Saved Search Activity via the Name, Description, or Activity Number field...

7.5AI score0.00454EPSS
Exploits1References2
Rows per page
Query Builder