CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

92 matches found

RedhatCVE•added 2025/05/22 7:41 p.m.•6 views

CVE-2021-3137

XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section...

5.4CVSS5.8AI score0.00152EPSS

Exploits1References1

Positive Technologies•added 2024/09/25 12:0 a.m.•3 views

PT-2024-6555 · Watchguard · Watchguard Authentication Gateway

Name of the Vulnerable Software and Affected Versions: WatchGuard Authentication Gateway versions through 12.10.2 Description: The issue is related to an Incorrect Authorization vulnerability in the WatchGuard Authentication Gateway, allowing an attacker with network access to execute restricted...

9.1CVSS7.2AI score0.00989EPSS

Exploits0References16

CNVD•added 2022/05/13 12:0 a.m.•21 views

XWiki Cross-Site Scripting Vulnerability (CNVD-2022-72198)

Xwiki is a Wiki platform for creating Web collaboration applications from the French company Xwiki. XWiki version 12.10.2 contains a cross-site scripting vulnerability that could be exploited to launch a cross-site scripting attack against a target via the SVG document upload comment feature...

3.5CVSS2.9AI score0.00152EPSS

Exploits1Affected Software1

OSV•added 2021/05/28 9:15 p.m.•19 views

CVE-2021-32620

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In versions prior to 11.10.13, 12.6.7, and 12.10.2, a user disabled on a wiki using email verification for registration canouldre-activate themself by using the activation link provided for hi...

8.8CVSS6.9AI score

Exploits0References3

OpenVAS•added 2021/03/10 12:0 a.m.•14 views

XWiki <= 12.10.2 XSS Vulnerability

XWiki is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.4CVSS5.1AI score0.00152EPSS

Exploits1References2

OSV•added 2021/01/29 6:13 p.m.•24 views

GHSA-43HG-G44Q-474Q Cross Site Scripting (XSS) in XWiki

XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section...

5.4CVSS5.1AI score0.00152EPSS

Exploits1References2

Github Security Blog•added 2021/01/29 6:13 p.m.•55 views

Cross Site Scripting (XSS) in XWiki

XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section...

5.4CVSS2.3AI score0.00152EPSS

Exploits1References3Affected Software1

OSV•added 2021/01/20 4:15 a.m.•14 views

CVE-2021-3137

XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section...

5.4CVSS5.8AI score

Exploits0References1

NVD•added 2021/01/20 4:15 a.m.•23 views

CVE-2021-3137

XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section...

5.4CVSS5.3AI score0.00152EPSS

Exploits1References1

Prion•added 2021/01/20 4:15 a.m.•19 views

Design/Logic Flaw

XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section...

3.5CVSS5.2AI score0.00152EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/01/20 3:17 a.m.•18 views

CVE-2021-3137

XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section...

5.5AI score0.00152EPSS

Exploits1References1

CNNVD•added 2021/01/19 12:0 a.m.•1 views

XWiki 跨站脚本漏洞

5.4CVSS5.9AI score0.00152EPSS

Exploits1References2

Cvelist•added 2020/10/27 7:53 p.m.•19 views

CVE-2019-8827

The HTTP referrer header may be used to leak browsing history. The issue was resolved by downgrading all third party referrers to their origin. This issue is fixed in Safari 13.0.3, iTunes 12.10.2 for Windows, iCloud for Windows 10.9.2, tvOS 13.2, iOS 13.2 and iPadOS 13.2, iCloud for Windows 7.15...

5.4AI score0.00609EPSS

Exploits0References6

RedHat Linux•added 2020/09/29 8:16 p.m.•3 views

webkitgtk: Multiple memory corruption issues leading to arbitrary code execution

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, iTunes for Windows 12.10.2. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8CVSS6.9AI score0.01176EPSS

Exploits0References5

RedHat Linux•added 2020/09/29 8:16 p.m.•2 views

webkitgtk: Multiple memory corruption issues leading to arbitrary code execution

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary...

9.3CVSS6.9AI score0.01084EPSS

Exploits0References5

RedhatCVE•added 2020/09/07 4:49 p.m.•46 views

CVE-2019-8823

8.8CVSS2.4AI score0.00443EPSS

Exploits0References4

RedhatCVE•added 2020/09/07 4:49 p.m.•25 views

CVE-2019-8821

8.8CVSS2.4AI score0.01123EPSS

Exploits0References4

RedhatCVE•added 2020/09/07 4:49 p.m.•45 views

CVE-2019-8819

8.8CVSS2.4AI score0.00578EPSS

Exploits0References4

RedhatCVE•added 2020/09/07 1:20 p.m.•33 views

CVE-2019-8816

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead...

9.3CVSS2.4AI score0.00539EPSS

Exploits0References4

RedhatCVE•added 2020/09/07 1:19 p.m.•60 views

CVE-2019-8783

8.8CVSS2.4AI score0.00429EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by