NAME__________Simple Student Result Management System cross-site scriptingPlatforms Affected:CodeAstro Simple Student Result Management System 5.6Risk Level:2.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Simple Student Result Management...
NAME__________aio-libs aiohttp HTTP request smugglingPlatforms Affected:aio-libs aiohttp 3.9.1Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________aio-libs aiohttp is vulnerable to HTTP request smuggling, caused by...
NAME__________Facebook News Feed Like cross-site scriptingPlatforms Affected:Sourcecodester Facebook News Feed Like 1.0Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Facebook News Feed Like is vulnerable...
NAME__________SUPERAntiSpyware Pro denial of servicePlatforms Affected:SUPERAntiSpyware SUPERAntiSpyware Pro X 10.0.1260Risk Level:5.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________SUPERAntiSpyware Pro is vulnerable to a denial...
NAME__________Facebook News Feed Like file uploadPlatforms Affected:Sourcecodester Facebook News Feed Like 1.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Facebook News Feed Like could allow...
NAME__________Emerson Rosemount GC370XA, GC700XA, GC1500XA information disclosurePlatforms Affected:Emerson Rosemount GC370XA Emerson Rosemount GC700XA Emerson Rosemount GC1500XARisk Level:6.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Emerson Rosemount...
NAME__________OpenBI code executionPlatforms Affected:OpenBI OpenBI 1.0.8 OpenBI OpenBI 1.0.7Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________OpenBI could allow a remote attacker to execute arbitrary...
NAME__________aio-libs aiohttp directory traversalPlatforms Affected:aio-libs aiohttp 3.9.1Risk Level:5.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________aio-libs aiohttp could allow a remote attacker to traverse directories on...
NAME__________eReserv cross-site scriptingPlatforms Affected:Cogites eReserv 7.7.58Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________eReserv is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________KuERP directory traversalPlatforms Affected:Sichuan Yougou Technology KuERP 1.0.4 Sichuan Yougou Technology KuERP 1.0.3Risk Level:5.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________KuERP could allow a remote...
NAME__________OpenBI information disclosurePlatforms Affected:OpenBI OpenBI 1.0.8 OpenBI OpenBI 1.0.7Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________OpenBI could allow a remote authenticated attacker to obtain...
NAME__________OpenBI file uploadPlatforms Affected:OpenBI OpenBI 1.0.8 OpenBI OpenBI 1.0.7Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________OpenBI could allow a remote attacker to upload arbitrary...
NAME__________Expense Management System cross-site scriptingPlatforms Affected:Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Expense Management System is vulnerable to cross-site scripting, caused by improper validation...
NAME__________eReserv cross-site scriptingPlatforms Affected:Cogites eReserv 7.7.58Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________eReserv is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________OpenBI file uploadPlatforms Affected:OpenBI OpenBI 1.0.8 OpenBI OpenBI 1.0.7Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________OpenBI could allow a remote attacker to upload arbitrary...
NAME__________Entity Delete Log module for Drupal security bypassPlatforms Affected:Drupal Entity Delete Log module for Drupal 1.1.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Entity Delete...
NAME__________cURL libcurl security bypassPlatforms Affected:cURL libcurl 8.5.0Risk Level:7.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________cURL libcurl could allow a remote attacker to bypass security restrictions,...
NAME__________OpenBI file uploadPlatforms Affected:OpenBI OpenBI 1.0.8 OpenBI OpenBI 1.0.7Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________OpenBI could allow a remote attacker to upload arbitrary...
NAME__________Moby BuildKit denial of servicePlatforms Affected:Moby BuildKit 0.12.4Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Moby BuildKit is vulnerable to a denial of service....
NAME__________Apache ServiceComb Service-Center information disclosurePlatforms Affected:Apache ServiceComb Service-Center 2.1.0Risk Level:5.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache ServiceComb Service-Center could allow a remote attacker to...
NAME__________Apache ServiceComb Service-Center server-side request forgeryPlatforms Affected:Apache ServiceComb Service-Center 2.1.0Risk Level:7.6Exploitability:UnprovenConsequences: DESCRIPTION__________Apache ServiceComb Service-Center is vulnerable to server-side request forgery,...
Google-owned Mandiant said it identified new malware employed by a China-nexus espionage threat actor known as UNC5221 and other threat...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity flaw impacting iOS, iPadOS, macOS, tvOS, and...
Unleashing the power of cloud with containerisation One question that the NCSC is often asked, is whether to use containers...
