Lucene search
K

6 matches found

Github Security Blog
Github Security Blog
added 2026/02/02 11:0 p.m.8 views

Craft Commerce has Stored XSS in Tax Zones (Name & Description) Leading to Potential Privilege Escalation

Summary A stored XSS vulnerability in Craft Commerce allows attackers to execute malicious JavaScript in an administrator’s browser. This occurs because the Name & Description fields in Tax Zones are not properly sanitized before being displayed in the admin panel. Proof of Concept Requirments -...

6.1CVSS5.7AI score0.00283EPSS
Exploits1References6Affected Software1
CNVD
CNVD
added 2018/10/19 12:0 a.m.3 views

Unspecified Vulnerability in Oracle Sun Systems Products Suite Solaris (CNVD-2019-30946)

Oracle Sun Systems Products Suite is a suite of Sun systems products from Oracle Corporation, of which Solaris is one of the computer operating system components. A security vulnerability exists in the Zones subcomponent of the Solaris component of Oracle Sun Systems Products Suite, version 11.3...

4.9CVSS8.4AI score0.00417EPSS
Exploits0References1
CNVD
CNVD
added 2016/10/20 12:0 a.m.6 views

Unspecified Vulnerability in Oracle Solaris 'Kernel Zones'

Oracle Solaris is a set of Unix-like operating systems from Oracle. A security vulnerability exists in the 'Kernel Zones' component of Oracle Solaris version 11.3. A local attacker can exploit the vulnerability to cause a denial of service. The availability of data is affected...

5.5CVSS6.4AI score0.00344EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.7 views

The vulnerability of the Solaris operating system, which allows a hacker to execute arbitrary code

The vulnerability of Solaris Kernel Zones, a subsystem of the Solaris operating system, is related to errors in the code. Exploiting this vulnerability allows an attacker acting locally to execute arbitrary code...

7.2CVSS7.5AI score0.00412EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2016/01/21 2:59 a.m.16 views

Design/Logic Flaw

Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via unknown vectors related to Solaris Kernel Zones, a different vulnerability than CVE-2016-0419...

1.2CVSS5.7AI score0.00376EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/11/05 12:0 a.m.8 views

The vulnerability of the Solaris operating system allows a intruder to gain unauthorized access for data reading purposes.

The vulnerability of Solaris Kernel Zones, a component of the Solaris operating system, is related to errors in the code. Exploiting this vulnerability can allow an intruder, operating locally, to gain unauthorized access to read data...

2.1CVSS7.2AI score0.00383EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder