CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Cvelist•added 2022/09/20 10:10 p.m.•17 views

CVE-2022-39220 XSS Vulnerabilities in WebClient

SFTPGo is an SFTP server written in Go. Versions prior to 2.3.5 are subject to Cross-site scripting XSS vulnerabilities in the SFTPGo WebClient, allowing remote attackers to inject malicious code. This issue is patched in version 2.3.5. No known workarounds exist...

6.1CVSS6.3AI score0.00176EPSS

Exploits0References1

Github Security Blog•added 2022/06/21 8:4 p.m.•35 views

Argo CD's external URLs for Deployments can include JavaScript

Impact All unpatched versions of Argo CD starting with v1.0.0 are vulnerable to a cross-site scripting XSS bug allowing a malicious user to inject a javascript: link in the UI. When clicked by a victim user, the script will execute with the victim's permissions up to and including admin. The scri...

9CVSS5.6AI score0.00774EPSS

Exploits0References5Affected Software2

seebug.org•added 2015/05/19 12:0 a.m.•28 views

FineCMS v2.3.5 /member/index.php SQL注入漏洞

No description provided by source...

7.1AI score

Exploits0

Packet Storm•added 2008/01/31 12:0 a.m.•36 views

joomlachrono-rfi.txt

+By CrackersChild+ Script.......: CHRONOFORMS version V2.3.5 Down.........: http://www.joomlaos.de/option,comremository/Itemid,41/func,startdown/id,2810.html Author.......: CrackersChild | [email protected] & [email protected] Class........: Remote File İnclude Vulnerability...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by