5

CVSS3.1

CVE-2023-38511 - iTop Dashboard editor vulnerable dashboard config file parameter

iTop is an IT service management platform. Dashboard editor : can load multiple files and URL, and full path disclosure on dashboard config file. This vulnerability is fixed in 3.0.4 and 3.1.1.

πŸ“… Published: April 15, 2024, 5:06 p.m. πŸ”„ Last Modified: Feb. 6, 2025, 8:55 p.m.

6.3

CVSS3.1

CVE-2024-3797 - SourceCodester QR Code Bookmark System sql injection

A vulnerability was found in SourceCodester QR Code Bookmark System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /endpoint/delete-bookmark.php?bookmark=1. The manipulation of the argument bookmark leads to sql injection. The attack can be initiated remo…

πŸ“… Published: April 15, 2024, 4 p.m. πŸ”„ Last Modified: Feb. 10, 2025, 7:07 p.m.

4.8

CVSS3.1

CVE-2024-3796 - Cross-site Scripting vulnerability in WBSAirback

Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/BackupSchedule, description field. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the victim and steal their session data.

πŸ“… Published: April 15, 2024, 2:15 p.m. πŸ”„ Last Modified: April 10, 2025, 7:54 p.m.

4.8

CVSS3.1

CVE-2024-3795 - Cross-site Scripting vulnerability in WBSAirback

Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/BackupTemplate, name / description fields. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the victim and steal their session data.

πŸ“… Published: April 15, 2024, 2:14 p.m. πŸ”„ Last Modified: April 10, 2025, 6:55 p.m.

4.8

CVSS3.1

CVE-2024-3794 - Cross-site Scripting vulnerability in WBSAirback

Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/AdvancedSystem, description field, all parameters. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the victim and steal their session data.

πŸ“… Published: April 15, 2024, 2:13 p.m. πŸ”„ Last Modified: April 10, 2025, 8:26 p.m.

4.8

CVSS3.1

CVE-2024-3793 - Cross-site Scripting vulnerability in WBSAirback

Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/CloudAccounts, account name / user password / server fields, all parameters. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the victim and stea…

πŸ“… Published: April 15, 2024, 2:13 p.m. πŸ”„ Last Modified: April 10, 2025, 6:15 p.m.

4.8

CVSS3.1

CVE-2024-3792 - Cross-site Scripting vulnerability in WBSAirback

Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/DeviceReplication, execution range field, all parameters. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the victim and steal their session dat…

πŸ“… Published: April 15, 2024, 2:13 p.m. πŸ”„ Last Modified: April 10, 2025, 6:39 p.m.

4.8

CVSS3.1

CVE-2024-3791 - Cross-site Scripting vulnerability in WBSAirback

Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/SystemConfiguration, name / free memory limit fields , type / password parameters. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the victim an…

πŸ“… Published: April 15, 2024, 2:13 p.m. πŸ”„ Last Modified: April 10, 2025, 7:27 p.m.

4.8

CVSS3.1

CVE-2024-3790 - Cross-site Scripting vulnerability in WBSAirback

Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/SystemUsers, login / description fields, passwd1/ passwd2 parameters. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the victim and steal their…

πŸ“… Published: April 15, 2024, 2:12 p.m. πŸ”„ Last Modified: April 10, 2025, 7:18 p.m.

6.5

CVSS3.1

CVE-2024-3789 - Uncontrolled Resource Consumption vulnerability in WBSAirback

Uncontrolled resource consumption vulnerability in White Bear Solutions WBSAirback, version 21.02.04. This vulnerability could allow an attacker to send multiple command injection payloads to influence the amount of resources consumed.

πŸ“… Published: April 15, 2024, 2:09 p.m. πŸ”„ Last Modified: April 10, 2025, 8:26 p.m.
Total resulsts: 349182
Page 10283 of 34,919
Β« previous page Β» next page
Filters