Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2022/03/09 8:15 p.m.17 views

CVE-2022-24349

An authenticated user can create a link with reflected XSS payload for actions’ pages, and send it to other users. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim. This attac...

4.6CVSS0.00849EPSS
Exploits0References7
OSV
OSVadded 2022/03/09 8:15 p.m.9 views

CVE-2022-24349

An authenticated user can create a link with reflected XSS payload for actions’ pages, and send it to other users. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim. This attac...

4.4CVSS5.6AI score
Exploits0References7
Prion
Prionadded 2022/03/09 8:15 p.m.23 views

Cross site scripting

An authenticated user can create a link with reflected XSS payload for actions’ pages, and send it to other users. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim. This attac...

2.1CVSS5AI score0.00849EPSS
Exploits0References6Affected Software3
UbuntuCve
UbuntuCveadded 2022/03/09 8:15 p.m.31 views

CVE-2022-24349

An authenticated user can create a link with reflected XSS payload for actions’ pages, and send it to other users. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim. This attac...

4.6CVSS6.3AI score0.00849EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2022/03/09 7:30 p.m.66 views

CVE-2022-24349

An authenticated user can create a link with reflected XSS payload for actions’ pages, and send it to other users. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim. This attac...

4.6CVSS3.4AI score0.00849EPSS
Exploits0
CVE
CVEadded 2022/03/09 7:30 p.m.151 views

CVE-2022-24349

CVE-2022-24349: In Zabbix, an authenticated user can create a hosts group with a stored XSS payload that becomes available to other users. When users search groups (and similar vectors described in the Debian/SUSE advisories), the XSS payload can execute in the victim’s browser, enabling actions ...

4.6CVSS5AI score0.00849EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessusadded 2004/12/01 12:0 a.m.477 views

Hydra: SMTP AUTH

This plugin runs Hydra to find SMTP AUTH accounts and passwords by brute force. To use this plugin, enter the 'Logins file' and the 'Passwords file' under the 'Hydra NASL wrappers options' advanced settings block. TRUSTED...

5.4AI score
Exploits0
Rows per page
Query Builder