CVE-2024-23995
- EPSS 1.47%
- Veröffentlicht 29.04.2024 16:15:35
- Zuletzt bearbeitet 21.11.2024 08:58:47
Cross Site Scripting (XSS) in Beekeeper Studio 4.1.13 and earlier allows remote attackers to execute arbitrary code in the column name of a database table in tabulator-popup-container.
CVE-2023-28394
- EPSS 0.58%
- Veröffentlicht 23.05.2023 02:15:10
- Zuletzt bearbeitet 17.01.2025 19:15:27
Beekeeper Studio versions prior to 3.9.9 allows a remote authenticated attacker to execute arbitrary JavaScript code with the privilege of the application on the PC where the affected product is installed. As a result, an arbitrary OS command may be ...
CVE-2022-43143
- EPSS 0.62%
- Veröffentlicht 21.11.2022 21:15:11
- Zuletzt bearbeitet 29.04.2025 20:15:22
A cross-site scripting (XSS) vulnerability in Beekeeper Studio v3.6.6 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the error modal container.
CVE-2022-26174
- EPSS 2.23%
- Veröffentlicht 21.03.2022 22:15:07
- Zuletzt bearbeitet 21.11.2024 06:53:33
A remote code execution (RCE) vulnerability in Beekeeper Studio v3.2.0 allows attackers to execute arbitrary code via a crafted payload injected into the display fields.