Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-7481

Malware in sbrugna...

9CVSS8.1AI score0.01845EPSS
Exploits2References4
CNNVD
CNNVD
added 2024/04/12 12:0 a.m.4 views

O2OA 信息泄露漏洞

LanDe Network O2oa is an Oa office system from LanDe Network China. An information disclosure vulnerability exists in O2OA 20240403 and prior versions, which stems from an unknown function in the file /xportal that can lead to information disclosure...

5.9CVSS4.4AI score0.00886EPSS
Exploits0References5
OSV
OSV
added 2019/01/23 5:29 p.m.3 views

CVE-2018-15614

A vulnerability in the one-x Portal component of IP Office could allow an authenticated user to perform stored cross site scripting attacks via fields in the Conference Scheduler Service that could affect other application users. Affected versions of IP Office include 10.0 through 10.1 SP3 and 11...

5.4CVSS5.3AI score0.00621EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/01/23 5:0 p.m.19 views

CVE-2018-15614 IP Office one-X Portal XSS

A vulnerability in the one-x Portal component of IP Office could allow an authenticated user to perform stored cross site scripting attacks via fields in the Conference Scheduler Service that could affect other application users. Affected versions of IP Office include 10.0 through 10.1 SP3 and 11...

6.8CVSS6.3AI score0.00621EPSS
Exploits0References1
CVE
CVE
added 2019/01/23 5:0 p.m.56 views

CVE-2018-15614

The CVE-2018-15614 entry concerns a stored cross-site scripting (XSS) vulnerability in the one-X Portal component of Avaya IP Office. The issue allows an authenticated user to inject XSS via fields in the Conference Scheduler Service, potentially affecting other application users. Affected versio...

6.8CVSS5.4AI score0.00621EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2018/09/12 9:29 p.m.3 views

CVE-2018-15610

A vulnerability in the one-X Portal component of Avaya IP Office allows an authenticated attacker to read and delete arbitrary files on the system. Affected versions of Avaya IP Office include 9.1 through 9.1 SP12, 10.0 through 10.0 SP7, and 10.1 through 10.1 SP2...

8.8CVSS5.9AI score0.01845EPSS
Exploits2References2
Cvelist
Cvelist
added 2018/09/12 9:0 p.m.27 views

CVE-2018-15610 Improper access controls in IP Office one-X Portal

A vulnerability in the one-X Portal component of Avaya IP Office allows an authenticated attacker to read and delete arbitrary files on the system. Affected versions of Avaya IP Office include 9.1 through 9.1 SP12, 10.0 through 10.0 SP7, and 10.1 through 10.1 SP2...

7.3CVSS8.5AI score0.01845EPSS
Exploits2References2
CVE
CVE
added 2018/09/12 9:0 p.m.59 views

CVE-2018-15610

CVE-2018-15610 affects Avaya IP Office, specifically the one-X Portal component. An authenticated attacker can read and delete arbitrary files on the system. Affected versions include 9.1 (9.1 SP12) and 10.x (10.0 SP7, 10.1 SP2). The available documentation states the vulnerability and impacted s...

9CVSS7.7AI score0.01845EPSS
Exploits2References2Affected Software1
Packet Storm
Packet Storm
added 2018/09/10 12:0 a.m.67 views

Avaya one-X 9.x / 10.0.x / 10.1.x Arbitrary File Disclosure / Deletion

=============================== - Advisory - =============================== Tittle: one-X portal arbitrary OS file access Risk: High Date: 07.Ago.2018 Author: Pedro Andujar Twitter: @pandujar .: INTRO : one-X Portal for IP Office is an application that runs on a web server connected to the IP...

0.2AI score0.01845EPSS
Exploits2
Rows per page
Query Builder