363 matches found
The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.
The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
The vulnerability of the dashboard diagram description function in the Apache Superset visualization software allows attackers to perform cross-site scripting attacks.
The vulnerability of the control panel diagram description function in Apache Superset data visualization software is related to the lack of measures taken to protect the structure of web pages during the processing of SVG elements. Exploiting this vulnerability allows a remote attacker to perfor...
The vulnerability of the Adobe Experience Manager content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager content and media data management system lies in the insufficient protection of the web page structure when processing DOM elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the user interface of Kubernets Rancher cluster management software allows a attacker to perform XSS attacks.
The vulnerability of the user interface of Kubernets Rancher cluster management software is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
PT-2025-15711 · Ооо 'Новые Технологии Безопасности' · Safeinspect
Уязвимость системы контроля привилегированных пользователей SafeInspect связана с непринятием мер по защите структуры веб-страницы. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, выполнить произвольный HTML-код...
The vulnerability of Microsoft SharePoint Server and Microsoft SharePoint Enterprise Server packages lies in the lack of measures taken to protect the structure of web pages, allowing attackers to execute spear-phishing attacks.
The vulnerability of Microsoft SharePoint Server and Microsoft SharePoint Enterprise Server packages is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability can allow a malicious actor to perform a spear-phishing attack remotely...
The vulnerabilities in web browsers Firefox and Firefox ESR, as well as the Thunderbird email client, are related to the lack of security measures protecting the structure of web pages. This allows attackers to gain unauthorized access to protected information.
The vulnerabilities in web browsers Firefox and Firefox ESR, as well as the email client Thunderbird, are related to the lack of security measures for handling web page structures. Exploiting these vulnerabilities can allow an attacker operating remotely to gain unauthorized access to protected...
The vulnerability of the content_security_policy function in the Action Pack interpreter for Ruby allows attackers to perform cross-site scripting (XSS) attacks.
The vulnerability of the contentsecuritypolicy function in the Action Pack interpreter for Ruby is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor, operating remotely, to perform cross-site scripting attacks...
Vulnerability of the UI module for business management in Bitrix24 and the 1C-Bitrix content management system: A module that allows attackers to execute arbitrary code
Vulnerability of the UI module for business management in Bitrix24 and the 1C-Bitrix website content management system: Website management involves failing to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a speciall...
The vulnerability of the Portal component in the Oracle PeopleSoft Enterprise PeopleTools business application suite allows a perpetrator to gain unauthorized access to read, modify, add, or delete data.
The vulnerability of the Portal component in the Oracle PeopleSoft Enterprise PeopleTools business application suite is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allows an attacker, operating remotely, to gain unauthorized access to read,...
The vulnerability of Acronis Cyber Protect 16’s data protection software lies in the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.
The vulnerability of Acronis Cyber Protect 16 data protection software is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
PT-2025-4228 · Microsoft · Sharepoint Server
Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Description: The issue concerns a spoofing vulnerability in Microsoft SharePoint Server. This vulnerability is related to the failure to properly protect the web page structure, whic...
PT-2025-1286 · Microsoft +5 · Edge +5
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 132.0.6834.83 Microsoft Edge affected versions not specified Description: The issue exists due to inadequate protection of the web page structure in the Navigation function of the browsers. This could allow a...
PT-2025-7268 · Weeek · Weeek
Name of the Vulnerable Software and Affected Versions: WEEEK affected versions not specified Description: The issue is related to the lack of protection for the web page structure in the WEEEK task and project management service. This could allow a remote attacker to execute arbitrary JavaScript...
PT-2024-10255 · Linksys · Linksys E8450
Name of the Vulnerable Software and Affected Versions: Linksys E8450 version 1.2.00.360516 Description: A command injection issue was discovered, allowing attackers to inject malicious commands via the id email check btn field. This could potentially grant unauthorized access or control. The...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the web page structure when processing DOM elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the web page structure when processing DOM elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the web page structure when processing DOM elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the web page structure when processing DOM elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of Adobe Connect web conference software lies in the lack of protective measures for website structures, allowing attackers to enhance their privileges and execute arbitrary code.
The vulnerability of Adobe Connect web conference software relates to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and execute arbitrary code...