Lucene search
K

89 matches found

nvd
nvd
added 2025/10/20 9:15 p.m.7 views

CVE-2025-60781

PHP Education Manager v1.0 is vulnerable to Cross Site Scripting XSS in the worksheet.php file via the participantname parameter...

6.1CVSS0.00208EPSS
Exploits1References1
cvelist
cvelist
added 2025/10/20 12:0 a.m.12 views

CVE-2025-60781

PHP Education Manager v1.0 is vulnerable to Cross Site Scripting XSS in the worksheet.php file via the participantname parameter...

0.00208EPSS
Exploits1References1
cve
cve
added 2025/10/20 12:0 a.m.36 views

CVE-2025-60781

PHP Education Manager v1.0 is affected by a Cross-Site Scripting (XSS) vulnerability in worksheet.php via the participant_name parameter. The root cause is an unvalidated/unsanitized input in worksheet.php that can be reflected in the web page. The documents do not provide details on affected env...

6.1CVSS5.9AI score0.00208EPSS
Exploits1References1Affected Software1
vulnrichment
vulnrichment
added 2025/10/20 12:0 a.m.7 views

CVE-2025-60781

PHP Education Manager v1.0 is vulnerable to Cross Site Scripting XSS in the worksheet.php file via the participantname parameter...

5.9AI score0.00208EPSS
Exploits1References1
cnnvd
cnnvd
added 2025/10/20 12:0 a.m.5 views

PHP Education Management 安全漏洞

PHP Education Management is an education manager from the individual developer Iqbolshoh Ilhomjonov. A security vulnerability exists in PHP Education Management version 1.0, which stems from an unvalidated parameter participantname in the worksheet.php file and could lead to a cross-site scriptin...

6.1CVSS6.2AI score0.00208EPSS
Exploits1References1
euvd
euvd
added 2025/10/03 8:7 p.m.17 views

EUVD-2024-52673

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00497EPSS
Exploits3References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-42288

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00448EPSS
Exploits1References2
redhatcve
redhatcve
added 2025/05/23 8:11 a.m.19 views

CVE-2024-54795

SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting XSS vulnerabilities in the create/edit forms of the worksheet designer function...

5.4CVSS5.4AI score0.00497EPSS
Exploits3References1
zdt
zdt
added 2025/01/27 12:0 a.m.242 views

SpagoBI 3.5.1 Cross Site Scripting Vulnerability

CVE-2024-54795 Severity : Medium 5.4 CVSS score : CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Summary : Engineering Ingegneria Informatica SpagoBI version 3.5.1 is affected by multiple stored XSS inside of the worksheet designer page. Poc Steps to Reproduce : 1. While editing a document insertin...

5.4CVSS7.1AI score0.00497EPSS
Exploits3
packetstorm
packetstorm
added 2025/01/27 12:0 a.m.327 views

SpagoBI 3.5.1 Cross Site Scripting

SpagoBI versions 3.5.1 and below suffer from persistent cross site scripting vulnerabilities. CVE-2024-54795 Severity : Medium 5.4 CVSS score : CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Summary : Engineering Ingegneria Informatica SpagoBI version 3.5.1 is affected by multiple stored XSS inside...

5.4CVSS5.6AI score0.00497EPSS
Exploits3
osv
osv
added 2025/01/21 6:15 p.m.4 views

CVE-2024-54795

SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting XSS vulnerabilities in the create/edit forms of the worksheet designer function...

5.4CVSS6.1AI score0.00497EPSS
Exploits3References2
nvd
nvd
added 2025/01/21 6:15 p.m.55 views

CVE-2024-54795

SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting XSS vulnerabilities in the create/edit forms of the worksheet designer function...

5.4CVSS0.00497EPSS
Exploits3References2
vulnrichment
vulnrichment
added 2025/01/21 12:0 a.m.6 views

CVE-2024-54795

SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting XSS vulnerabilities in the create/edit forms of the worksheet designer function...

6.1AI score0.00497EPSS
Exploits3References2
ptsecurity
ptsecurity
added 2025/01/21 12:0 a.m.7 views

PT-2025-3073 · Spagobi · Spagobi

Name of the Vulnerable Software and Affected Versions: SpagoBI version 3.5.1 Description: The issue concerns multiple Stored Cross-Site Scripting XSS vulnerabilities found in the create/edit forms of the worksheet designer function. This allows for the potential execution of malicious scripts,...

5.4CVSS5.7AI score0.00497EPSS
Exploits3References6
cvelist
cvelist
added 2025/01/21 12:0 a.m.48 views

CVE-2024-54795

SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting XSS vulnerabilities in the create/edit forms of the worksheet designer function...

0.00497EPSS
Exploits3References2
cve
cve
added 2025/01/21 12:0 a.m.48 views

CVE-2024-54795

CVE-2024-54795 affects the open‑source BI suite SpagoBI v3.5.1 and earlier . Multiple stored XSS vulnerabilities exist in the worksheet designer’s create/edit forms. Exploitation requires user interaction and sufficient permissions to access the worksheet designer, enabling an attacker to inject ...

5.4CVSS5.8AI score0.00497EPSS
Exploits3References2Affected Software1
cnnvd
cnnvd
added 2025/01/21 12:0 a.m.6 views

Engineering SpagoBI 跨站脚本漏洞

Engineering SpagoBI is an open source Business Intelligence suite based on the J2EE framework from the Italian company Engineering. The suite is mainly used to manage BI objects such as reports, scorecards, and data mining models, which can be controlled, validated, verified and distributed throu...

5.4CVSS5.2AI score0.00497EPSS
Exploits3References3
ptsecurity
ptsecurity
added 2025/01/15 12:0 a.m.7 views

PT-2025-34632

Name of the Vulnerable Software and Affected Versions: PhpOffice/PhpSpreadsheet versions prior to 1.30.0 PhpOffice/PhpSpreadsheet versions prior to 2.1.12 PhpOffice/PhpSpreadsheet versions prior to 2.4.0 PhpOffice/PhpSpreadsheet versions prior to 3.10.0 PhpOffice/PhpSpreadsheet versions prior to...

8.7CVSS6.9AI score0.00747EPSS
Exploits0References19
fedora
fedora
added 2024/02/27 1:45 a.m.15 views

[SECURITY] Fedora 38 Update: perl-Spreadsheet-ParseXLSX-0.31-1.fc38

This module is an adaptor for that reads XLSX files. For documentation about the various data that you can retrieve from these classes, please see , , , and...

5.5CVSS5.6AI score0.00468EPSS
Exploits1
cnnvd
cnnvd
added 2023/04/18 12:0 a.m.7 views

XWiki Platform 注入漏洞

XWiki Platform is a suite of Wiki platforms for creating Web collaboration applications from XWiki France. An injection vulnerability exists in XWiki Platform that originates from the use of the right side of the Scheduler Application worksheet page to perform any action...

9.9CVSS7.9AI score0.76297EPSS
Exploits1References5
Rows per page
Query Builder