Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Onekeyadmin ProjectOnekeyadmin

2 matches found

CVE
CVEadded 2023/03/07 12:0 a.m.40 views

CVE-2023-26954

CVE-2023-26954 affects onekeyadmin v1.3.9, with a stored cross-site scripting (XSS) vulnerability in the User Group module . The issue is characterized as a stored XSS (root cause not further detailed in the sources) with CVSSv3.1 base metrics: AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N, base score 5.4 ...

5.4CVSS5.3AI score0.00198EPSS
CVE
CVEadded 2023/03/07 12:0 a.m.35 views

CVE-2023-26955

Affected software: onekeyadmin v1.3.9. Vulnerability: stored cross-site scripting (XSS) via the Admin Group module. Root cause / nature: XSS flaw enabling injection in the Admin Group component, as reported across multiple sources. Impact (as stated): medium severity per CVSS 3.1 (Base score 5.4)...

5.4CVSS5.3AI score0.00198EPSS