CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Prion•added 2023/05/27 4:15 a.m.•15 views

Input validation

Kiwi TCMS is an open source test management system for both manual and automated testing. Kiwi TCMS allows users to upload attachments to test plans, test cases, etc. Earlier versions of Kiwi TCMS had introduced upload validators in order to prevent potentially dangerous files from being uploaded...

4.9CVSS5.6AI score0.0096EPSS

Exploits0References2Affected Software1

Prion•added 2018/05/10 2:29 p.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the add credentials functionality in Zoho ManageEngine NetFlow Analyzer v12.3 before 12.3.125 build 123125 allows remote attackers to inject arbitrary web script or HTML via a crafted description value. This can be exploited through CSRF...

4.3CVSS6AI score0.00274EPSS

Exploits0References2Affected Software1

NVD•added 2017/02/13 9:59 p.m.•11 views

CVE-2016-9345

An issue was discovered in Emerson DeltaV Easy Security Management DeltaV V12.3, DeltaV V12.3.1, and DeltaV V13.3. Critical vulnerabilities may allow a local attacker to elevate privileges within the DeltaV control system...

6.8CVSS6.6AI score0.00206EPSS

Exploits0References3

Prion•added 2017/02/13 9:59 p.m.•10 views

Design/Logic Flaw

4.9CVSS7AI score0.00206EPSS

Exploits0References3Affected Software1