InfoSec News & Tutorials
NAME Jenkins weekly cross-site scripting Platforms Affected:Jenkins weekly 2.367 Jenkins weekly 2.369Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins weekly is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by…
NAME Jenkins DotCi Plugin cross-site scripting Platforms Affected:Jenkins DotCi Plugin 2.40.00Risk Level:8.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins DotCi Plugin is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by…
NAME Jenkins Walti Plugin cross-site scripting Platforms Affected:Jenkins Walti Plugin 1.0.1Risk Level:7.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Walti Plugin is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by…
NAME TIBCO EBX Add-ons cross-site scripting Platforms Affected:TIBCO EBX Add-ons 5.4.1Risk Level:9Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION TIBCO EBX Add-ons is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A…
NAME Jenkins Anchore Container Image Scanner Plugin cross-site scripting Platforms Affected:Jenkins Anchore Container Image Scanner Plugin 1.0.24Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Anchore Container Image Scanner Plugin is vulnerable to cross-site…
NAME Multix cross-site request forgery Platforms Affected:phpscriptpoint Multix 2.4Risk Level:8.8Exploitability:Proof of ConceptConsequences:Cross-Site Scripting DESCRIPTION Multix is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input by the…
NAME Jenkins NS-ND Integration Performance Publisher Plugin cross-site scripting Platforms Affected:Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.134Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins NS-ND Integration Performance Publisher Plugin is vulnerable to cross-site…
NAME TIBCO EBX cross-site scripting Platforms Affected:TIBCO EBX 6.0.0 TIBCO EBX 6.0.8Risk Level:8Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION TIBCO EBX is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A…
NAME Safe Software FME Server cross-site scripting Platforms Affected:Safe Software FME Server 2018.1 Safe Software FME Server 2019.0 Safe Software FME Server 2018.0 Safe Software FME Server 2020.0 Safe Software…
NAME Markdown-Nice cross-site scripting Platforms Affected:Markdown-Nice Markdown-Nice 1.8.22Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Markdown-Nice is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this…
NAME XWiki Platform Index UI cross-site scripting Platforms Affected:XWiki Platform Index UI 13.10.5 XWiki Platform Index UI 14.2Risk Level:8.9Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION XWiki Platform Index UI is vulnerable to cross-site scripting,…
NAME XWiki Platform Mentions UI cross-site scripting Platforms Affected:XWiki Platform Mentions UI 12.5-rc-1 XWiki Platform Mentions UI 13.10.5 XWiki Platform Mentions UI 14.3Risk Level:8.9Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION XWiki Platform Mentions UI…
NAME XWiki Platform Attachment UI cross-site scripting Platforms Affected:XWiki Platform Attachment UI 14.0-rc-1 XWiki Platform Attachment UI 14.3Risk Level:8.9Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION XWiki Platform Attachment UI is vulnerable to cross-site scripting,…
NAME XWiki Platform Web Parent POM cross-site scripting Platforms Affected:XWiki Platform Web Parent POM 1.0 XWiki Platform Web Parent POM 13.10.5 XWiki Platform Web Parent POM 14.2Risk Level:8.9Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION…
NAME Doctor's Appointment System cross-site scripting Platforms Affected:Sourcecodester Doctor's Appointment System 1.0Risk Level:9.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Doctor's Appointment System is vulnerable to cross-site scripting, caused by improper validation of user-supplied input…
NAME GitLab Community and Enterprise Edition cross-site scripting Platforms Affected:GitLab Enterprise Edition 15.1 GitLab Community Edition 15.1 GitLab Community Edition 15.2 GitLab Enterprise Edition 15.2 GitLab Enterprise Edition 15.3 GitLab…
NAME HCL Domino and iNotes cross-site scripting Platforms Affected:HCL iNotes 9 HCL iNotes 10 HCL iNotes 11 HCL Domino 9 HCL Domino 10 HCL Domino 11 HCL Domino 12 HCL…
NAME Claroline cross-site scripting Platforms Affected:Claroline Claroline 13.5.7Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Claroline is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the Calendar functionality. A remote…
NAME Jenkins Job Configuration History Plugin cross-site scripting Platforms Affected:Jenkins Job Configuration History Plugin 1165.v8cc9fd1f4597Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Job Configuration History Plugin is vulnerable to cross-site scripting, caused by…
NAME TIBCO Statistica cross-site scripting Platforms Affected:TIBCO Statistica 14.0.0 TIBCO Statistica 14.0.0 Estore Edition TIBCO Statistica 14.0.0 Trial Edition TIBCO Data Science 14.0.0 WorkbenchRisk Level:8.7Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION TIBCO Statistica is…
NAME WWBN AVideo cross-site scripting Platforms Affected:WWBN AVideo 11.6 WWBN AVideo dev master commit 3f7c0364Risk Level:9.6Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION WWBN AVideo is vulnerable to cross-site scripting, caused by improper validation of…
NAME WWBN AVideo cross-site scripting Platforms Affected:WWBN AVideo 11.6 WWBN AVideo dev master commit 3f7c0364Risk Level:9.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION WWBN AVideo is vulnerable to cross-site scripting, caused by improper validation of…
NAME Eyes of Network web application cross-site scripting Platforms Affected:Eyes of Network web applicationRisk Level:7.3Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Eyes of Network web application is vulnerable to cross-site scripting, caused by an…
NAME WWBN AVideo cross-site scripting Platforms Affected:WWBN AVideo 11.6 WWBN AVideo dev master commit 3f7c0364Risk Level:9.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION WWBN AVideo is vulnerable to cross-site scripting, caused by improper validation of…