Lucene search
K

3 matches found

Cvelist
Cvelist
added 2026/04/13 9:10 a.m.28 views

CVE-2026-35565 Apache Storm UI: Stored Cross-Site Scripting (XSS) via Unsanitized Topology Metadata in Storm UI

Stored Cross-Site Scripting XSS via Unsanitized Topology Metadata in Apache Storm UI Versions Affected: before 2.8.6 Description: The Storm UI visualization component interpolates topology metadata including component IDs, stream names, and grouping values directly into HTML via innerHTML in...

0.00466EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.7 views

B&R Industrial Automation Process Visualization Interface log information leakage vulnerability

B&R Industrial Automation Process Visualization Interface is a process visualization tool developed by B&R Industrial Automation in Austria. Versions of the B&R Industrial Automation Process Visualization Interface prior to version 6.5 contained a vulnerability related to log information leakage...

5.1CVSS5.8AI score0.00103EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/11/16 12:0 a.m.7 views

The vulnerability of the application software interface for data visualization software Apache Superset allows a hacker to probe connections with the database.

The vulnerability of the application software interface for data visualization in Apache Superset is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows a malicious actor to remotely check database connections...

5.5CVSS5.9AI score0.00839EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder