exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2019-0018

около 7 лет назад

A persistent cross-site scripting (XSS) vulnerability in the file upload menu of Juniper ATP may allow an authenticated user to inject arbitrary scripts and steal sensitive data and credentials from a web administration session, possibly tricking a follow-on administrative user to perform administrative actions on the device. This issue affects Juniper ATP 5.0 versions prior to 5.0.3.

CVSS3: 5.4

EPSS: Низкий

GHSA-64q2-7r9m-7p7x

больше 3 лет назад

A persistent cross-site scripting (XSS) vulnerability in the file upload menu of Juniper ATP may allow an authenticated user to inject arbitrary scripts and steal sensitive data and credentials from a web administration session, possibly tricking a follow-on administrative user to perform administrative actions on the device. This issue affects Juniper ATP 5.0 versions prior to 5.0.3.

CVSS3: 5.4

EPSS: Низкий

BDU:2019-00725

около 7 лет назад

Уязвимость компонента file upload menu системы предотвращения вторжений Juniper ATP, позволяющая нарушителю внедрить в загружаемую страницу произвольный JavaScript-код и получить доступ к защищаемым данным

CVSS3: 5.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2019-0018 A persistent cross-site scripting (XSS) vulnerability in the file upload menu of Juniper ATP may allow an authenticated user to inject arbitrary scripts and steal sensitive data and credentials from a web administration session, possibly tricking a follow-on administrative user to perform administrative actions on the device. This issue affects Juniper ATP 5.0 versions prior to 5.0.3.	CVSS3: 5.4	0% Низкий	около 7 лет назад
GHSA-64q2-7r9m-7p7x A persistent cross-site scripting (XSS) vulnerability in the file upload menu of Juniper ATP may allow an authenticated user to inject arbitrary scripts and steal sensitive data and credentials from a web administration session, possibly tricking a follow-on administrative user to perform administrative actions on the device. This issue affects Juniper ATP 5.0 versions prior to 5.0.3.	CVSS3: 5.4	0% Низкий	больше 3 лет назад
BDU:2019-00725 Уязвимость компонента file upload menu системы предотвращения вторжений Juniper ATP, позволяющая нарушителю внедрить в загружаемую страницу произвольный JavaScript-код и получить доступ к защищаемым данным	CVSS3: 5.4	0% Низкий	около 7 лет назад

Уязвимостей на страницу