Lucene search
+L

4 matches found

Cvelist
Cvelist
added 2026/05/15 4:13 p.m.46 views

CVE-2026-41258 OpenMRS: Stored Velocity SSTI to RCE via ConceptReferenceRange

OpenMRS is an open source electronic medical record system platform. From 2.7.0 to before 2.7.9 and 2.8.6, the ConceptReferenceRangeUtility.evaluateCriteria method in OpenMRS Core evaluates database-stored criteria strings as Apache Velocity templates without any sandbox configuration. The...

9.1CVSS0.00317EPSS
Exploits0References1
OSV
OSV
added 2022/05/05 5:15 p.m.5 views

CVE-2022-27662

On F5 Traffix SDC 5.2.x versions prior to 5.2.2 and 5.1.x versions prior to 5.1.35, a stored Cross-Site Template Injection vulnerability exists in an undisclosed page of the Traffix SDC Configuration utility that allows an attacker to execute template language-specific instructions in the context...

4.8CVSS5.9AI score0.00451EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/05/12 5:15 p.m.2 views

CVE-2021-30214

Knowage Suite 7.3 is vulnerable to Stored Client-Side Template Injection in '/knowage/restful-services/signup/update' via the 'name' parameter...

5.4CVSS6.2AI score0.23795EPSS
Exploits1References2
Prion
Prion
added 2020/01/17 6:15 p.m.16 views

Design/Logic Flaw

A Stored Client Side Template Injection CSTI with Angular was discovered in the SolarWinds Orion Platform 2019.2 HF1 in many application forms. An attacker can inject an Angular expression and escape the Angular sandbox to achieve stored XSS. This can lead to privilege escalation...

4.3CVSS6.4AI score0.0186EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder