Lucene search
+L

35 matches found

bdu_fstec
bdu_fstec
added 2023/09/13 12:0 a.m.7 views

The vulnerability of the Aruba AirWave network management system arises from the lack of measures taken to protect the website structure. This allows attackers to perform cross-site scripting attacks.

The vulnerability of the Aruba AirWave network management system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS6AI score0.00345EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2022/12/28 12:0 a.m.9 views

The vulnerability of Adobe Experience Manager’s content and media data management system, which stems from the lack of measures taken to protect the website structure, allows attackers to execute arbitrary code.

The vulnerability of Adobe Experience Manager’s content and media data management system exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created link...

6.4CVSS6.3AI score0.0048EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2022/12/24 12:0 a.m.8 views

The vulnerability of Adobe Experience Manager’s content and media data management system, which stems from the lack of measures taken to protect the website structure, allows attackers to perform cross-site scripting attacks.

The vulnerability of Adobe Experience Manager’s content and media data management system exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using a specially created link...

5.5CVSS5.6AI score0.0048EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2022/10/28 12:0 a.m.12 views

The vulnerability of the Fortinet FortiNAC access control device lies in its lack of measures to protect the website structure, allowing attackers to execute cross-site scripting attacks.

The vulnerability of the Fortinet FortiNAC network access control device is related to the lack of protection for the website structure when processing the User ID parameter for the administrator. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...

6.1CVSS6AI score0.01154EPSS
Exploits0References4Affected Software1
bdu_fstec
bdu_fstec
added 2022/09/07 12:0 a.m.10 views

The vulnerability of the OTRS ticket request administration interface, related to the lack of protective measures for the website structure, allows a hacker to carry out XSS attacks.

The vulnerability of the OTRS ticket request administration interface is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

5.5CVSS5.4AI score0.00531EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2022/09/02 12:0 a.m.13 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability of the Git-based software platform for collaborative code development on GitLab exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks by manipulating color tags...

7.3CVSS6.3AI score0.00662EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2022/04/13 12:0 a.m.7 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab stems from the lack of protective measures for website structures, allowing attackers to compromise data integrity.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to insufficient filtering of feature flag descriptions. Exploiting this vulnerability allows a malicious actor to influence the integrity of data...

6.1CVSS6.4AI score0.00949EPSS
Exploits0References5Affected Software1
bdu_fstec
bdu_fstec
added 2022/03/28 12:0 a.m.7 views

The vulnerability of the email management application, calendar, and contact list app VMware Workspace ONE Boxer stems from insufficient protection measures for the website structure. This allows attackers to perform cross-site scripting attacks.

The vulnerability of the email management application, calendar, and contact list component in VMware Workspace ONE Boxer is related to the lack of security measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS5.6AI score0.00453EPSS
Exploits0References4Affected Software1
bdu_fstec
bdu_fstec
added 2022/03/16 12:0 a.m.8 views

The vulnerability of the Microsoft Dynamics 365 resource planning software lies in the insufficient protection of the website structure, which allows attackers to execute cross-site scripting attacks.

The vulnerability of the Microsoft Dynamics 365 resource planning software is related to insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

7.6CVSS6.3AI score0.01071EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2021/04/06 12:0 a.m.7 views

The vulnerability of the RouterOS operating system in MikroTik routers allows a hacker to compromise the integrity and accessibility of protected information.

The vulnerability of the RouterOS operating system for MikroTik routers lies in the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to compromise the integrity and accessibility of the protected information...

8.5CVSS7.4AI score0.04494EPSS
Exploits1References3Affected Software1
bdu_fstec
bdu_fstec
added 2020/03/18 12:0 a.m.5 views

The vulnerability of Microsoft Exchange Server servers stems from the lack of protective measures for website structures, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of Microsoft Exchange Server lies in the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using a specially created request...

8.7CVSS6.6AI score0.01649EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2019/02/21 12:0 a.m.7 views

The vulnerability of the Cisco Jabber Client Framework software arises from the lack of measures taken to protect the structure of the web page. This allows attackers to execute any JavaScript script they desire.

The vulnerability of the Cisco Jabber Client Framework exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute any arbitrary JavaScript script remotely...

5.5CVSS6AI score0.00876EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2018/12/04 12:0 a.m.8 views

The vulnerability of the Microsoft Dynamics 365 resource planning software lies in the insufficient protection of the website structure, allowing a hacker to inject arbitrary code into the web pages that users are allowed to download.

The vulnerability of the Microsoft Dynamics 365 resource planning software application is related to insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary code into the web pages uploaded to users, thereby gaining access to...

6.4CVSS8AI score0.01413EPSS
Exploits0References5Affected Software1
nvd
nvd
added 2009/04/01 10:30 p.m.13 views

CVE-2008-6579

Nortel Communication Server 1000 4.50.x allows remote attackers to obtain Web application structure via unknown vectors related to "web resources to phones and administrators."...

5CVSS6.5AI score0.01489EPSS
Exploits0References7
cvelist
cvelist
added 2009/04/01 10:0 p.m.20 views

CVE-2008-6579

Nortel Communication Server 1000 4.50.x allows remote attackers to obtain Web application structure via unknown vectors related to "web resources to phones and administrators."...

6.5AI score0.01489EPSS
Exploits0References7
Rows per page
Query Builder