Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

2 Total Results

Displaying 1-2 of 2

Attacker Value

Unknown

CVE-2023-45966

Disclosure Date: October 23, 2023 (last updated February 25, 2025)

umputun remark42 version 1.12.1 and before has a Blind Server-Side Request Forgery (SSRF) vulnerability.

Attacker Value

Unknown

CVE-2021-29271

Disclosure Date: March 27, 2021 (last updated February 22, 2025)

remark42 before 1.6.1 allows XSS, as demonstrated by "Locator: Locator{URL:" followed by an XSS payload. This is related to backend/app/store/comment.go and backend/app/store/service/service.go.

Attack Vector: Network Privileges: None User Interaction: Required

2 Total Results

Displaying 1-2 of 2

Unknown

CVE-2023-45966

Unknown

CVE-2021-29271

Quick Cookie Notification