Lucene search
K

4 matches found

OSV
OSV
added 2024/05/14 2:58 p.m.4 views

CVE-2024-22910

Cross Site Scripting XSS vulnerability in CrushFTP v.10.6.0 and v.10.5.5 allows an attacker to execute arbitrary code via a crafted payload...

6.1CVSS6.1AI score0.00504EPSS
Exploits0References1
OSV
OSV
added 2019/11/12 10:58 p.m.1 views

GHSA-36HF-6HP2-9G4C Local file inclusion allows unauthorized access to internal resources in Alkacon OpenCms

In Alkacon OpenCms 10.5.4 and 10.5.5, there are multiple resources vulnerable to Local File Inclusion that allow an attacker to access server resources: clearhistory.jsp, convertxml.jsp, groupnew.jsp, loginmessage.jsp, xmlcontentrepair.jsp, and /system/workplace/admin/history/settings/index.jsp...

4.3CVSS5.9AI score0.07346EPSS
Exploits5References5
CNVD
CNVD
added 2019/08/28 12:0 a.m.2 views

Alkacon OpenCms Cross-Site Scripting Vulnerability (CNVD-2019-40072)

OpenCms is Alkacon launched a company written in Java, an open source content management system . A cross-site scripting vulnerability exists in the login form in Alkacon OpenCms 10.5.4, 10.5.5. An attacker can exploit this vulnerability to conduct cross-site scripting attacks...

6.1CVSS6.2AI score0.02904EPSS
Exploits5References1
CNVD
CNVD
added 2019/08/28 12:0 a.m.6 views

Alkacon OpenCms Local File Inclusion Vulnerability

Alkacon OpenCms is a set of open source content management system CMS developed using the Java language . A local file inclusion vulnerability exists in Alkacon OpenCms versions 10.5.4 and 10.5.5, which can be exploited by an attacker to access server resources...

4.3CVSS6.6AI score0.07346EPSS
Exploits5References1
Rows per page
Query Builder