Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:8 a.m.10 views

CVE-2019-20483

An issue was discovered in Viki Vera 4.9.1.26180. An attacker could set a user's last name to an XSS Payload, and read another user's cookie and use that to login to the application...

5.4CVSS6AI score0.00538EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:7 a.m.8 views

CVE-2019-20484

An issue was discovered in Viki Vera 4.9.1.26180. A user without access to a project could download or upload project files by opening the Project URL directly in the browser after logging in...

8.1CVSS6.9AI score0.00905EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-11028

Malware in sbrugna...

8.1CVSS8AI score0.00905EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-6192

Malware in sbrugna...

7.2CVSS7AI score0.02386EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-11027

Malware in sbrugna...

5.4CVSS5.6AI score0.00538EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:33 a.m.5 views

CVE-2019-15123

The Branding Module in Viki Vera 4.9.1.26180 allows an authenticated user to change the logo on the website. An attacker could use this to upload a malicious .aspx file and gain Remote Code Execution on the site...

7.2CVSS7.5AI score0.02386EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/13 12:0 a.m.5 views

Viki Solutions Viki Vera Cross-Site Scripting Vulnerability

Viki Solutions Viki Vera is a suite of workflow customization platforms from Canadian company Viki Solutions. The platform supports file uploading, job management, and other features. A security vulnerability exists in Viki Vera 4.9.1.26180, which can be exploited by an attacker to set a user's...

5.4CVSS6.8AI score0.00538EPSS
Exploits1References1
CNVD
CNVD
added 2021/01/11 12:0 a.m.3 views

Viki Solutions Viki Vera Access Control Error Vulnerability

Viki Solutions Viki Vera is a suite of workflow customization platforms from Canadian company Viki Solutions. The platform supports file uploading, job management, and other features. An access control error vulnerability exists in Viki Vera version 4.9.1.26180, which is related to the affected...

8.1CVSS6.9AI score0.00905EPSS
Exploits1References1
OSV
OSV
added 2021/01/05 10:15 p.m.2 views

CVE-2019-20484

An issue was discovered in Viki Vera 4.9.1.26180. A user without access to a project could download or upload project files by opening the Project URL directly in the browser after logging in...

8.1CVSS7.3AI score0.00905EPSS
Exploits1References1
OSV
OSV
added 2021/01/05 9:15 p.m.3 views

CVE-2019-20483

An issue was discovered in Viki Vera 4.9.1.26180. An attacker could set a user's last name to an XSS Payload, and read another user's cookie and use that to login to the application...

5.4CVSS6.1AI score0.00538EPSS
Exploits1References1
NVD
NVD
added 2021/01/05 9:15 p.m.20 views

CVE-2019-20483

An issue was discovered in Viki Vera 4.9.1.26180. An attacker could set a user's last name to an XSS Payload, and read another user's cookie and use that to login to the application...

5.4CVSS5.2AI score0.00538EPSS
Exploits1References1
Prion
Prion
added 2021/01/05 9:15 p.m.12 views

Cross site scripting

An issue was discovered in Viki Vera 4.9.1.26180. An attacker could set a user's last name to an XSS Payload, and read another user's cookie and use that to login to the application...

3.5CVSS5.1AI score0.00538EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/01/05 9:5 p.m.24 views

CVE-2019-20484

An issue was discovered in Viki Vera 4.9.1.26180. A user without access to a project could download or upload project files by opening the Project URL directly in the browser after logging in...

8AI score0.00905EPSS
Exploits1References1
CVE
CVE
added 2021/01/05 9:5 p.m.58 views

CVE-2019-20484

CVE-2019-20484 affects Viki Vera 4.9.1.26180. A user who is not granted access to a project can download or upload project files by directly opening the Project URL in a browser after logging in. The Red Hat and CNVD entries corroborate the same access-control flaw, indicating an improper restric...

8.1CVSS7.9AI score0.00905EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/01/05 9:2 p.m.19 views

CVE-2019-20483

An issue was discovered in Viki Vera 4.9.1.26180. An attacker could set a user's last name to an XSS Payload, and read another user's cookie and use that to login to the application...

5.2AI score0.00538EPSS
Exploits1References1
CVE
CVE
added 2021/01/05 9:2 p.m.53 views

CVE-2019-20483

The CVE-2019-20483 entry concerns Viki Vera version 4.9.1.26180. The vulnerability allows an attacker to set a user’s last name to an XSS payload, which can be used to read another user’s cookie and impersonate the user by using that cookie to log in. This is described across multiple connected s...

5.4CVSS5.1AI score0.00538EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/01/05 12:0 a.m.6 views

Viki Solutions Viki Vera 跨站脚本漏洞

Viki Solutions Viki Vera is a suite of workflow customization platforms from Canadian company Viki Solutions. The platform supports file uploading, job management, and other features. A security vulnerability exists in Viki Vera 4.9.1.26180, which can be exploited by an attacker to set a user's...

5.4CVSS6AI score0.00538EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/01/05 12:0 a.m.7 views

Viki Solutions Viki Vera 访问控制错误漏洞

Viki Solutions Viki Vera is a suite of workflow customization platforms from Canadian company Viki Solutions. The platform supports file uploading, job management, and other features. An access control error vulnerability exists in Viki Vera version 4.9.1.26180, which is related to the affected...

8.1CVSS7.2AI score0.00905EPSS
Exploits1References2
CNVD
CNVD
added 2020/06/15 12:0 a.m.6 views

Viki Solutions Viki Vera Code Execution Vulnerability

Viki Solutions Viki Vera is a workflow customization platform from Viki Solutions Canada. The platform supports file uploading, job management, etc. Branding Module is one of the branding modules. A security vulnerability exists in the Branding Module in Viki Solutions Viki Vera version...

7.2CVSS7.3AI score0.02386EPSS
Exploits0References1
OSV
OSV
added 2020/06/12 9:15 p.m.3 views

CVE-2019-15123

The Branding Module in Viki Vera 4.9.1.26180 allows an authenticated user to change the logo on the website. An attacker could use this to upload a malicious .aspx file and gain Remote Code Execution on the site...

7.2CVSS7.2AI score0.02386EPSS
Exploits0References2
Rows per page
Query Builder