Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2017/11/21 12:0 a.m.19 views

Octopus Deploy XSS Vulnerability

Cross-site scripting XSS vulnerability in Octopus Deploy allows remote authenticated users to inject arbitrary web script or HTML via the Step Template Name parameter. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright ...

5.4CVSS5.4AI score0.00767EPSS
Exploits0References1
CNVD
CNVD
added 2017/11/14 12:0 a.m.6 views

Octopus Deploy Cross-Site Scripting Vulnerability

Octopus Deploy is an automation tool from Octopus Deploy Australia for development and deployment of . A cross-site scripting vulnerability exists in Octopus Deploy versions 3.7.0 through 3.17.13. The vulnerability can be exploited by a remote attacker to inject arbitrary web script or HTML using...

5.4CVSS6AI score0.00767EPSS
Exploits0References1
Prion
Prion
added 2017/11/13 9:29 a.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in Octopus Deploy 3.7.0-3.17.13 fixed in 3.17.14 allows remote authenticated users to inject arbitrary web script or HTML via the Step Template Name parameter...

3.5CVSS5.1AI score0.00767EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2017/11/13 9:29 a.m.18 views

CVE-2017-16801

Cross-site scripting XSS vulnerability in Octopus Deploy 3.7.0-3.17.13 fixed in 3.17.14 allows remote authenticated users to inject arbitrary web script or HTML via the Step Template Name parameter...

5.4CVSS5.1AI score0.00767EPSS
Exploits0References1
OSV
OSV
added 2017/11/13 9:29 a.m.5 views

CVE-2017-16801

Cross-site scripting XSS vulnerability in Octopus Deploy 3.7.0-3.17.13 fixed in 3.17.14 allows remote authenticated users to inject arbitrary web script or HTML via the Step Template Name parameter...

5.4CVSS5.9AI score0.00767EPSS
Exploits0References1
CVE
CVE
added 2017/11/13 9:0 a.m.51 views

CVE-2017-16801

Octopus Deploy XSS (CVE-2017-16801) affects versions 3.7.0–3.17.13; fixed in 3.17.14. The vulnerability allows remote authenticated users to inject arbitrary web script or HTML via the Step Template Name parameter. Impact is reflected/partial integrity risk as per CVSS entries (MEDIUM in CVSS v3....

5.4CVSS5AI score0.00767EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder