39 matches found
EUVD-2022-37738
Malicious code in bioql PyPI...
EUVD-2022-37739
Malicious code in bioql PyPI...
EUVD-2022-37740
Malicious code in bioql PyPI...
CVE-2024-37828
A stored cross-site scripting XSS in Vermeg Agile Reporter v23.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Message field under the Set Broadcast Message module...
CVE-2022-34834
An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log...
CVE-2022-34833
An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component...
CVE-2022-34832
An issue was discovered in VERMEG AgileReporter 21.3. XXE can occur via an XML document to the Analysis component...
CVE-2024-37828
A stored cross-site scripting XSS in Vermeg Agile Reporter v23.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Message field under the Set Broadcast Message module...
CVE-2024-37828
CVE-2024-37828 describes a stored cross-site scripting (XSS) vulnerability in Vermeg Agile Reporter v23.2.1. The issue allows an attacker to inject crafted scripts/HTML into the Message field of the Set Broadcast Message module, potentially enabling script execution in a victim’s browser and mani...
PT-2024-27770 · Vermeg · Vermeg Agilereporter
Name of the Vulnerable Software and Affected Versions: Vermeg Agile Reporter version 23.2.1 Description: The issue is a stored cross-site scripting XSS that allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Message field under the Set Broadcast...
CVE-2024-37828
A stored cross-site scripting XSS in Vermeg Agile Reporter v23.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Message field under the Set Broadcast Message module...
CVE-2024-37828
A stored cross-site scripting XSS in Vermeg Agile Reporter v23.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Message field under the Set Broadcast Message module...
VERMEG Agile Reporter Security Breach
VERMEG Agile Reporter is a hybrid of pre-packaged modules from VERMEG, Inc. A security vulnerability exists in VERMEG Agile Reporter version v23.2.1, which stems from the presence of stored cross-site scripting XSS that allows an attacker to inject a crafted payload to execute arbitrary web scrip...
CVE-2022-34834
An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log...
CVE-2022-34834
An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log...
CVE-2022-34832
An issue was discovered in VERMEG AgileReporter 21.3. XXE can occur via an XML document to the Analysis component...
CVE-2022-34832
An issue was discovered in VERMEG AgileReporter 21.3. XXE can occur via an XML document to the Analysis component...
CVE-2022-34834
An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log...
CVE-2022-34833
An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component...
CVE-2022-34833
An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component...