CVSS评分在区间 [0,3.9] 的搜索结果 (6986)

CVE-2018-9925(发布:2018-04-10 02:29:00)NM
CVSS3.5

[原文]An issue was discovered in idreamsoft iCMS through 7.0.7. XSS exists via the nickname field in an admincp.php?app=user&do=save&frame=iPHP request.

CVE-2018-1234(发布:2018-03-30 17:29:01)NMP
CVSS2.1

[原文]RSA Authentication Agent version 8.0.1 and earlier for Web for IIS is affected by a problem where access control list (ACL) permissions on a Windows Named Pipe were not sufficient to prevent access by unauthorized users. The attacker with local access to the system can exploit this vulnerability to read configuration properties for the authentication agent.

CVE-2017-1767(发布:2018-03-30 12:29:00)NMPS
CVSS3.5

[原文]IBM Business Process Manager 8.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 136152.

CVE-2018-1384(发布:2018-03-30 12:29:00)NMS
CVSS3.5

[原文]IBM Business Process Manager 8.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 138135.

CVE-2018-9120(发布:2018-03-29 01:29:00)NMP
CVSS3.5

[原文]In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post.

CVE-2018-9121(发布:2018-03-29 01:29:00)NMP
CVSS3.5

[原文]In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post comment.

12345678下一页尾页 第1页 / 共1165页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站