Lucene search
+L

50 matches found

Positive Technologies
Positive Technologies
added 2024/03/28 12:0 a.m.7 views

PT-2024-18836 · Elementor · Elementor Website Builder

Name of the Vulnerable Software and Affected Versions: Elementor Website Builder versions up to, and including, 3.20.2 Description: The issue is related to Stored Cross-Site Scripting via the plugin's Path Widget due to insufficient output escaping on user-supplied attributes. This allows...

6.4CVSS8AI score0.00462EPSS
Exploits0References8
Patchstack
Patchstack
added 2024/03/26 12:0 a.m.15 views

WordPress Elementor Pro Plugin <= 3.20.1 is vulnerable to Cross Site Scripting (XSS)

Software Elementor Pro Type Plugin Vulnerable versions = 3.20.1 Fixed in 3.20.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-2120 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 360c3b70f13b Credits wesley wcraft Required privilege...

5.4CVSS6.6AI score0.0034EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2023/09/13 4:9 p.m.37 views

Important: Red Hat Security Advisory: Red Hat Integration Camel for Spring Boot 3.20.2 release and security update

Red Hat Integration Camel for Spring Boot 3.20.2 release and security update is now available. Red Hat Product Security has rated this update as having an impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.8AI score0.01762EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/03/19 12:0 a.m.29 views

EulerOS 2.0 SP10 : protobuf (EulerOS-SA-2023-1537)

According to the versions of the protobuf packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A parsing vulnerability for the MessageSet type in the ProtocolBuffers versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1...

7.5CVSS7.1AI score0.01181EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2016:0334-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.8AI score0.05992EPSS
Exploits0References8
CNVD
CNVD
added 2019/12/26 12:0 a.m.3 views

Unspecified Vulnerability in NVIDIA GeForce Experience

NVIDIA GeForce Experience is a set of automatic graphics card update tools from NVIDIA. The product is capable of automatically updating graphics card drivers, and supports graphics card performance management and optimization. A security vulnerability exists in NVIDIA GeForce Experience versions...

7.8CVSS6.8AI score0.00379EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/04/03 12:0 a.m.42 views

openSUSE Security Update : pidgin (openSUSE-2017-410)

This update for pidgin fixes the following issues : Feature update : - Update to GNOME 3.20.2 fate318572. Security issues fixed : - CVE-2017-2640: Fix an out of bounds memory read in purplemarkupunescapeentity. boo1028835 Bugfixes - Correctly remove .so files for plugins fixes...

9.8CVSS7.1AI score0.06258EPSS
Exploits0References4
CNVD
CNVD
added 2016/09/09 12:0 a.m.5 views

File Roller 'src/file-utils.c' Directory Traversal Vulnerability

File Roller is for the Gnome desktop environment provides a graphical interface to operate the compressed, archived files, similar to the KDE desktop environment, Ark. A target traversal vulnerability exists in File Roller 3.5.4-3.20.2. If the target user opens a malicious document, it can cause...

7.5CVSS6.8AI score0.03328EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2016/02/03 12:0 a.m.44 views

openSUSE Security Update : SeaMonkey (openSUSE-2016-129) (SLOTH)

This update for SeaMonkey fixes the following issues : - update to SeaMonkey 2.40 bnc959277 - requires NSS 3.20.2 to fix MFSA 2015-150/CVE-2015-7575 bmo1158489 MD5 signatures accepted within TLS 1.2 ServerKeyExchange in server signature - MFSA 2015-134/CVE-2015-7201/CVE-2015-7202 Miscellaneous...

10CVSS7.5AI score0.06058EPSS
Exploits1References43
Prion
Prion
added 2008/10/28 2:0 a.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in includes/htmlArea/plugins/HtmlTidy/html-tidy-logic.php in Kayako eSupport 3.20.2 allows remote attackers to inject arbitrary web script or HTML via the jsMakeSrc parameter. NOTE: the provenance of this information is unknown; the details are obtained sole...

4.3CVSS5.9AI score0.01465EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder