CVE-2025-30520

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in crosstec Breezing Forms breezing-forms allows Reflected XSS.This issue affects Breezing Forms: from n/a through = 1.2.8.11...

CVE-2025-30520

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in crosstec Breezing Forms breezing-forms allows Reflected XSS.This issue affects Breezing Forms: from n/a through = 1.2.8.11...

CVE-2025-30520 WordPress Breezing Forms plugin <= 1.2.8.11 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in crosstec Breezing Forms breezing-forms allows Reflected XSS.This issue affects Breezing Forms: from n/a through = 1.2.8.11...

CVE-2025-30520

CVE-2025-30520 affects Breezing Forms (WordPress) up to version 1.2.8.11, with a Reflected XSS due to improper input neutralization during page generation. Affected range is Breezing Forms: from n/a through 1.2.8.11. According to the connected data, the entry is not yet patched (Patch Status: Unp...

CVE-2024-30520

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Labib Ahmed Carousel Anything For WPBakery Page Builder allows Stored XSS.This issue affects Carousel Anything For WPBakery Page Builder: from n/a through 2.1...

CVE-2024-30520

CVE-2024-30520 : Stored XSS in Carousel Anything For WPBakery Page Builder (vulnerable up to and including 2.1). Root cause: improper input neutralization during web page generation. Impact: cross-site scripting exposure; exact affected products/versions limited to Carousel Anything For WPBakery ...

CVE-2024-30520 WordPress Carousel Anything For WPBakery Page Builder plugin <= 2.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Labib Ahmed Carousel Anything For WPBakery Page Builder allows Stored XSS.This issue affects Carousel Anything For WPBakery Page Builder: from n/a through 2.1...

WordPress Carousel Anything For WPBakery Page Builder Plugin <= 2.1 is vulnerable to Cross Site Scripting (XSS)

Software Carousel Anything For WPBakery Page Builder Type Plugin Vulnerable versions = 2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-30520 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a74a859c3da3 Credits resecured.io...

Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.15 Multiple Vulnerabilities (CloudBees Security Advisory 2023-04-12)

The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.346.x prior to 2.346.40.0.15. It is, therefore, affected by multiple vulnerabilities including the following: - Jenkins Kubernetes Plugin 3909.v1f2c633e8590 and earlier does not properly mask i.e....

CVE-2023-30520

creationtimestamp| type| source ---|---|--- 2023-04-12 22:24:13+00:00| seen| https://t.me/cibsecurity/61987...

CVE-2023-30520

The CVE-2023-30520 entry refers to Jenkins Quay.io trigger Plugin version 0.1 and earlier, which does not constrain URL schemes for repository homepage URLs submitted via Quay.io trigger webhooks, enabling a stored XSS vulnerability when attackers submit crafted webhook payloads. The issue is doc...

SUSE CVE-2021-30520

Use after free in Tab Strip in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page...

CVE-2021-30520

Use after free in Tab Strip in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page...

CVE-2021-30520

Use after free in Tab Strip in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page...

CVE-2021-30520

CVE-2021-30520 affects Chromium before 90.0.4430.212. A use-after-free in the Tab Strip component enables arbitrary code execution via crafted pages or extension interactions. Affected: Chromium-based browsers as shipped in Chromium upstream; vulnerable component is Tab Strip. Impact: remote atta...

openSUSE Security Update : opera (openSUSE-2021-828)

This update for opera fixes the following issues : Update to version 76.0.4017.154 - CHR-8420 Update chromium on desktop-stable-90-4017 to 90.0.4430.212 - DNA-92411 Bookmarks breadcrumbs wrong color when pressed in dark mode - DNA-92587 Sync settings: Use old password button doesnt work - DNA-926...

openSUSE Security Update : chromium (openSUSE-2021-762)

This update for chromium fixes the following issues : This is a rerelease with aarch64 enabled. Chromium 90.0.4430.212 boo1185908 - CVE-2021-30506: Incorrect security UI in Web App Installs - CVE-2021-30507: Inappropriate implementation in Offline - CVE-2021-30508: Heap buffer overflow in Media...

Debian: Security Advisory (DSA-4917-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4917-1 : chromium - security update

Several vulnerabilities have been discovered in the chromium web browser. - CVE-2021-30506 @retsew0x01 discovered an error in the Web App installation interface. - CVE-2021-30507 Alison Huffman discovered an error in the Offline mode. - CVE-2021-30508 Leecraso and Guang Gong discovered a buffer...

openSUSE: Security Advisory for chromium (openSUSE-SU-2021:0742-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...