Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.6 views

PT-2026-1681

Name of the Vulnerable Software and Affected Versions SmartLiving SmartLAN versions 6.x and earlier Description SmartLiving SmartLAN contains a remote command injection issue in the web.cgi binary. The issue is due to an unsanitized par POST parameter within the 'testemail' module. An attacker ca...

8.8CVSS8AI score0.01685EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/22 8:31 p.m.3 views

CVE-2021-24909

The ACF Photo Gallery Field WordPress plugin before 1.7.5 does not sanitise and escape the post parameter in the includes/acfphotogallerymetaboxedit.php file before outputing back in an attribute, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS6.2AI score0.008EPSS
Exploits2References1
OSV
OSV
added 2022/09/06 8:15 p.m.1 views

CVE-2022-37253

Persistent cross-site scripting XSS in Crime Reporting System 1.0 allows a remote attacker to introduce arbitary Javascript via manipulation of an unsanitized POST parameter...

5.4CVSS5.7AI score0.00626EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/09/06 7:46 p.m.17 views

CVE-2022-37253

Persistent cross-site scripting XSS in Crime Reporting System 1.0 allows a remote attacker to introduce arbitary Javascript via manipulation of an unsanitized POST parameter...

5.5AI score0.00626EPSS
Exploits0References2
OSV
OSV
added 2017/05/27 12:29 a.m.2 views

CVE-2017-3129

A Cross-Site Scripting vulnerability in Fortinet FortiWeb versions 5.7.1 and below allows attacker to execute unauthorized code or commands via an improperly sanitized POST parameter in the FortiWeb Site Publisher feature...

6.1CVSS6AI score0.00713EPSS
Exploits0References2
Rows per page
Query Builder