Lucene search

Adive Security Vulnerabilities

cve

CVE-2024-4337

Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting (XSS) vulnerability via the /adive/admin/nav/add, in multiple parameters. This vulnerability allows an attacker to retrieve the session details of an authenticated...

7.6CVSS

6AI Score

0.0004EPSS

2024-04-30 10:15 AM

cve

CVE-2024-4336

Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting (XSS) vulnerability via the /adive/admin/tables/add, in multiple parameters. An attacker could retrieve the session details of an authenticated...

7.6CVSS

6.1AI Score

0.0004EPSS

2024-04-30 10:15 AM

cve

CVE-2020-7991

Adive Framework 2.0.8 has admin/config CSRF to change the Administrator...

8.8CVSS

8.6AI Score

0.005EPSS

2020-01-26 10:15 PM

106

cve

CVE-2020-7989

Adive Framework 2.0.8 has admin/user/add userUsername...

6.1CVSS

7.4AI Score

0.002EPSS

2020-01-26 10:15 PM

cve

CVE-2020-7990

Adive Framework 2.0.8 has admin/user/add userName...

6.1CVSS

7.4AI Score

0.002EPSS

2020-01-26 10:15 PM