Lucene search
K

4 matches found

EUVD
EUVD
added 2026/05/14 1:52 p.m.29 views

EUVD-2026-30284

Verba is affected by a Stored Cross-Site Scripting XSS vulnerability within its login logging mechanism. When an unauthenticated remote attacker attempts to log in using an incorrect username and password combination, the supplied username value is recorded in the application logs. Due to lack of...

5.3CVSS5.8AI score0.00205EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-22724

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a Free Asset and IT Management Software package. Versions prior to 10.0.6 are subject to Cross- site Scripting via malicious RSS feeds. An Administrator...

6.2CVSS5.2AI score0.00569EPSS
Exploits0References2
NVD
NVD
added 2025/04/07 10:15 p.m.6 views

CVE-2025-0942

The DB chooser functionality in Jalios JPlatform 10 SP6 before 10.0.6 improperly neutralizes special elements used in an SQL command allows for unauthenticated users to trigger SQL Injection. This issue affects JPlatform before 10.0.6 and a PatchPlugin release 10.0.6 was issued 2023-02-06...

8.6CVSS0.00388EPSS
Exploits0References3
OSV
OSV
added 2025/03/31 4:15 a.m.3 views

CVE-2025-2975

A vulnerability was found in GFI KerioConnect 10.0.6 and classified as problematic. This issue affects some unknown processing of the file Settings/Email/Signature/EditHtmlSource of the component Signature Handler. The manipulation leads to cross site scripting. The attack may be initiated...

5.4CVSS3.7AI score0.00275EPSS
Exploits0References4
Rows per page
Query Builder