Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2024/10/13 12:0 a.m.5 views

PT-2024-32280 · Apache · Apache Roller

Name of the Vulnerable Software and Affected Versions: Apache Roller versions prior to 6.1.4 Description: A Cross-site Resource Forgery CSRF and privilege escalation vulnerability exists in Apache Roller. On multi-blog/user Roller websites, weblog owners are trusted to publish arbitrary weblog...

4.7CVSS7.4AI score0.00429EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2023/11/30 12:0 a.m.4 views

PT-2023-30784 · WordPress · Awesome Support

Name of the Vulnerable Software and Affected Versions: Awesome Support – WordPress HelpDesk & Support Plugin versions n/a through 6.1.4 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows Cross Site Request Forgery. Recommendations: For versions n/a through...

8.8CVSS8.9AI score0.00247EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/06/14 12:0 a.m.6 views

PT-2021-17161 · Hitachi Abb Power Grids · Esoms

Name of the Vulnerable Software and Affected Versions: Hitachi ABB Power Grids eSOMS versions prior to 6.0.4.2.2 Hitachi ABB Power Grids eSOMS versions prior to 6.1.4 Hitachi ABB Power Grids eSOMS versions prior to 6.3 Description: The issue allows an unauthorized user to gain access to report da...

7.5CVSS7.7AI score0.00934EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2019/04/01 12:0 a.m.4 views

PT-2019-8138 · Synology · Synology Diskstation Manager

Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions prior to 6.1.4-15217-3 Description: A cross-site scripting XSS issue exists, allowing remote authenticated users to inject arbitrary web script or HTML. This is due to insufficient validation of user...

6.5CVSS5.8AI score0.00825EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2017/12/01 12:0 a.m.6 views

PT-2017-14150 · Apache · Apache Qpid Broker-J

Name of the Vulnerable Software and Affected Versions: Apache Qpid Broker-J versions 6.1.0 through 6.1.4 Description: The issue arises from the broker's failure to properly enforce a maximum frame size in AMQP 1.0 frames, allowing a remote unauthenticated attacker to cause the broker to exhaust a...

7.5CVSS7.4AI score0.04389EPSS
Exploits0References11
Rows per page
Query Builder