Lucene search
+L

363 matches found

BDU FSTEC
BDU FSTEC
added 2025/03/05 12:0 a.m.8 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

8.7CVSS8AI score0.00475EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/21 12:0 a.m.8 views

The vulnerability of the dashboard diagram description function in the Apache Superset visualization software allows attackers to perform cross-site scripting attacks.

The vulnerability of the control panel diagram description function in Apache Superset data visualization software is related to the lack of measures taken to protect the structure of web pages during the processing of SVG elements. Exploiting this vulnerability allows a remote attacker to perfor...

5.5CVSS5.7AI score0.85966EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/17 12:0 a.m.5 views

The vulnerability of the Adobe Experience Manager content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system lies in the insufficient protection of the web page structure when processing DOM elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.00504EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/14 12:0 a.m.15 views

The vulnerability of the user interface of Kubernets Rancher cluster management software allows a attacker to perform XSS attacks.

The vulnerability of the user interface of Kubernets Rancher cluster management software is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

8.9CVSS7AI score0.00525EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/02/07 12:0 a.m.7 views

PT-2025-15711 · Ооо 'Новые Технологии Безопасности' · Safeinspect

Уязвимость системы контроля привилегированных пользователей SafeInspect связана с непринятием мер по защите структуры веб-страницы. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, выполнить произвольный HTML-код...

8.5CVSS7.3AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/06 12:0 a.m.8 views

The vulnerability of Microsoft SharePoint Server and Microsoft SharePoint Enterprise Server packages lies in the lack of measures taken to protect the structure of web pages, allowing attackers to execute spear-phishing attacks.

The vulnerability of Microsoft SharePoint Server and Microsoft SharePoint Enterprise Server packages is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability can allow a malicious actor to perform a spear-phishing attack remotely...

7.5CVSS7.7AI score0.01059EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.5 views

The vulnerabilities in web browsers Firefox and Firefox ESR, as well as the Thunderbird email client, are related to the lack of security measures protecting the structure of web pages. This allows attackers to gain unauthorized access to protected information.

The vulnerabilities in web browsers Firefox and Firefox ESR, as well as the email client Thunderbird, are related to the lack of security measures for handling web page structures. Exploiting these vulnerabilities can allow an attacker operating remotely to gain unauthorized access to protected...

6.4CVSS7AI score0.00572EPSS
Exploits0References17Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/01/31 12:0 a.m.6 views

The vulnerability of the content_security_policy function in the Action Pack interpreter for Ruby allows attackers to perform cross-site scripting (XSS) attacks.

The vulnerability of the contentsecuritypolicy function in the Action Pack interpreter for Ruby is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor, operating remotely, to perform cross-site scripting attacks...

5CVSS5.5AI score0.01009EPSS
Exploits0References12Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/01/27 12:0 a.m.5 views

Vulnerability of the UI module for business management in Bitrix24 and the 1C-Bitrix content management system: A module that allows attackers to execute arbitrary code

Vulnerability of the UI module for business management in Bitrix24 and the 1C-Bitrix website content management system: Website management involves failing to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a speciall...

7.5CVSS6AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/22 12:0 a.m.12 views

The vulnerability of the Portal component in the Oracle PeopleSoft Enterprise PeopleTools business application suite allows a perpetrator to gain unauthorized access to read, modify, add, or delete data.

The vulnerability of the Portal component in the Oracle PeopleSoft Enterprise PeopleTools business application suite is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allows an attacker, operating remotely, to gain unauthorized access to read,...

6.4CVSS7.4AI score0.00268EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.6 views

The vulnerability of Acronis Cyber Protect 16’s data protection software lies in the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability of Acronis Cyber Protect 16 data protection software is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

3.1CVSS5.3AI score0.0028EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.6 views

PT-2025-4228 · Microsoft · Sharepoint Server

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Description: The issue concerns a spoofing vulnerability in Microsoft SharePoint Server. This vulnerability is related to the failure to properly protect the web page structure, whic...

7.5CVSS9.4AI score0.01059EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.9 views

PT-2025-1286 · Microsoft +5 · Edge +5

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 132.0.6834.83 Microsoft Edge affected versions not specified Description: The issue exists due to inadequate protection of the web page structure in the Navigation function of the browsers. This could allow a...

10CVSS6.4AI score0.19272EPSS
Exploits27References264
Positive Technologies
Positive Technologies
added 2025/01/08 12:0 a.m.7 views

PT-2025-7268 · Weeek · Weeek

Name of the Vulnerable Software and Affected Versions: WEEEK affected versions not specified Description: The issue is related to the lack of protection for the web page structure in the WEEEK task and project management service. This could allow a remote attacker to execute arbitrary JavaScript...

8.7CVSS7.5AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/26 12:0 a.m.11 views

PT-2024-10255 · Linksys · Linksys E8450

Name of the Vulnerable Software and Affected Versions: Linksys E8450 version 1.2.00.360516 Description: A command injection issue was discovered, allowing attackers to inject malicious commands via the id email check btn field. This could potentially grant unauthorized access or control. The...

8.8CVSS8AI score0.01729EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2024/12/19 12:0 a.m.8 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the web page structure when processing DOM elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.00877EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/18 12:0 a.m.9 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the web page structure when processing DOM elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.00624EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/18 12:0 a.m.6 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the web page structure when processing DOM elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.00624EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/18 12:0 a.m.7 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the web page structure when processing DOM elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.00624EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/16 12:0 a.m.7 views

The vulnerability of Adobe Connect web conference software lies in the lack of protective measures for website structures, allowing attackers to enhance their privileges and execute arbitrary code.

The vulnerability of Adobe Connect web conference software relates to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and execute arbitrary code...

8.5CVSS5.8AI score0.00708EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder