2 matches found
The vulnerability of the private application programming interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to execute arbitrary code.
The vulnerability of the private application programming interface of the Cisco Identity Services Engine ISE management platform is related to the absence of a mechanism for checking uploaded files. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute arbitrary...
Cross-site Scripting (XSS)
github.com/usememos/memos is vulnerable to stored cross-site scriptingXSS attacks. The vulnerability exists due to unchecked file uploads via the Resource endpoint, allowing an attacker to inject and execute malicious javascript...