Lucene search
K

9 matches found

Vulnrichment
Vulnrichment
added 2026/03/11 4:18 p.m.1 views

CVE-2026-20163 Remote Command Execution (RCE) through the '/splunkd/__upload/indexing/preview' REST endpoint in Splunk Enterprise

In Splunk Enterprise versions below 10.2.0, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.5, 10.0.2503.12, 10.1.2507.16, and 9.3.2411.124, a user who holds a role that contains the high-privilege capability editcmd could execute arbitrary shell commands using the...

7.2CVSS6AI score0.00462EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:7 p.m.7 views

CVE-2020-25267

An XSS issue exists in the question-pool file-upload preview feature in ILIAS 6.4...

5.4CVSS6.1AI score0.0055EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2023/11/09 8:15 p.m.3 views

CVE-2023-5547

The course upload preview contained an XSS risk for users uploading unsafe data...

6.1CVSS5.8AI score0.00506EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/11/09 8:15 p.m.23 views

CVE-2023-5547

The course upload preview contained an XSS risk for users uploading unsafe data...

6.1CVSS6.3AI score0.00506EPSS
Exploits0References1
OSV
OSV
added 2023/11/09 8:15 p.m.3 views

UBUNTU-CVE-2023-5547

The course upload preview contained an XSS risk for users uploading unsafe data...

6.1CVSS6.4AI score0.00506EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/11/09 12:0 a.m.3 views

PT-2023-8911 · Moodle +1 · Moodle +1

Name of the Vulnerable Software and Affected Versions: Moodle affected versions not specified Description: The issue is related to an XSS risk in the course upload preview, which can be exploited when users upload unsafe data. This can allow a remote attacker to perform cross-site scripting...

9.8CVSS5.9AI score0.0137EPSS
Exploits0References20
OpenVAS
OpenVAS
added 2023/10/23 12:0 a.m.26 views

Moodle < 3.9.24, 3.11.x < 3.11.17, 4.0.x < 4.0.11, 4.1.x < 4.1.6, 4.2.x < 4.2.3 Multiple Vulnerabilities

Moodle is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moodle:moodle"; ifdescription...

9.8CVSS9.7AI score0.0193EPSS
Exploits0References10
CNNVD
CNNVD
added 2021/09/05 12:0 a.m.3 views

file-upload-with-preview 跨站脚本漏洞

file-upload-with-preview is a simple file upload utility that displays a preview of an uploaded image. Written in pure JavaScript. No dependencies. Works with Bootstrap 4 or without frameworks. A cross-site scripting vulnerability exists in file-upload-with-preview, which can be exploited to uplo...

6.1CVSS6AI score0.00893EPSS
Exploits0References4
CNVD
CNVD
added 2020/11/11 12:0 a.m.3 views

ILIAS Cross-Site Scripting Vulnerability (CNVD-2020-62481)

ILIAS is a powerful open source learning management system for developing and implementing web-based e-learning. A cross-site scripting vulnerability exists in the problematic library file upload preview feature in ILIAS 6.4. No detailed vulnerability details are provided at this time...

5.4CVSS6.2AI score0.0055EPSS
Exploits1References1
Rows per page
Query Builder