CVE-2020-35418
Cross Site Scripting (XSS) in the contact page of Group Office CRM 6.4.196 by uploading a crafted svg file. Devamını Oku
Devamını oku
CVE-2020-35418 (group_office)
Cross Site Scripting (XSS) in the contact page of Group Office CRM 6.4.196 by uploading a crafted svg file. Devamını Oku
CVE-2020-35419
Cross Site Scripting (XSS) in Group Office CRM 6.4.196 via the SET_LANGUAGE parameter. Devamını Oku
CVE-2020-35419 (group_office)
Cross Site Scripting (XSS) in Group Office CRM 6.4.196 via the SET_LANGUAGE parameter. Devamını Oku
CVE-2020-28124
Cross Site Scripting (XSS) in LavaLite 5.8.0 via the Address field. Devamını Oku
CVE-2020-35660
Cross Site Scripting (XSS) in Monica before 2.19.1 via the journal page. Devamını Oku
CVE-2020-28124 (lavalite)
Cross Site Scripting (XSS) in LavaLite 5.8.0 via the Address field. Devamını Oku
CVE-2020-35660 (monica)
Cross Site Scripting (XSS) in Monica before 2.19.1 via the journal page. Devamını Oku
CVE-2020-36288
The issue navigation and search view in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before version 8.13.4, and from version 8.14.0 before version 8.15.1 allows remote attackers to inject arbitrary HTML or JavaScript via a DOM Cross-Site Scripting (XSS) vulnerability caused by parameter pollution. Devamını Oku
CVE-2020-7269
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.…
CVE-2020-7270
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.…
CVE-2020-7308
Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update and McAfee Global Threat Intelligence (GTI) servers using DNS allows a remote attacker to view the requests from ENS and responses from GTI over DNS. By gaining control of an intermediate DNS server or altering the network…