CVE-2026-30963

Capsule is a multi-tenancy and policy-based framework for Kubernetes. To defend against namespace hijacking achieved through update/patch operations on namespaces, Capsule uses a webhook to validate update requests targeting namespaces. However, in Kubernetes, the namespace/finalize and...

CVE-2026-30963

creationtimestamp| type| source ---|---|--- 2026-05-28 05:52:44+00:00| published-proof-of-concept| https://github.com/projectcapsule/capsule/security/advisories/GHSA-2ww6-hf35-mfjm...

CVE-2025-30963

creationtimestamp| type| source ---|---|--- 2025-03-31 11:31:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9634 2025-03-31 15:00:56+00:00| seen| https://t.me/cvedetector/21587...

CVE-2025-30963 WordPress JetSmartFilters plugin <= 3.6.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetSmartFilters jet-smart-filters allows DOM-Based XSS.This issue affects JetSmartFilters: from n/a through = 3.6.3...

CVE-2025-30963

CVE-2025-30963 : JetSmartFilters for Elementor is affected up to version 3.6.3 with a DOM-based XSS vector due to improper neutralization of input during web page generation (described as Cross-site Scripting). Exploitation may occur in contexts where user-controlled input influences the DOM. Aff...

CVE-2025-30963 WordPress JetSmartFilters plugin <= 3.6.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetSmartFilters jet-smart-filters allows DOM-Based XSS.This issue affects JetSmartFilters: from n/a through = 3.6.3...

CVE-2024-30963

creationtimestamp| type| source ---|---|--- 2024-12-05 22:53:27+00:00| seen| https://infosec.exchange/users/cve/statuses/113602671873057517 2024-12-06 01:24:01+00:00| seen| https://t.me/cvedetector/12151...

CVE-2024-30963

Buffer Overflow vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2- ROS2-humble and navigation 2-humble allows a local attacker to execute arbitrary code via a crafted script...

CVE-2024-30963

Open Robotics ROS2 Navigation2 (navigation2 for ROS2 Humble) is affected by a Buffer Overflow in the navigation2 component. The vulnerability allows a local attacker to execute arbitrary code via a crafted script, with high impact to confidentiality, integrity, and availability. Root cause: buffe...

CVE-2023-30963

creationtimestamp| type| source ---|---|--- 2023-07-11 02:24:10+00:00| seen| https://t.me/cibsecurity/66321...

CVE-2023-30963

A security defect was discovered in Foundry Frontend which enabled users to perform Stored XSS attacks in Slate if Foundry's CSP were to be bypassed. This defect was resolved with the release of Foundry Frontend 6.229.0. The service was rolled out to all affected Foundry instances. No further...

CVE-2023-30963 Stored XSS in Foundry Slate Query Dropdown menu

A security defect was discovered in Foundry Frontend which enabled users to perform Stored XSS attacks in Slate if Foundry's CSP were to be bypassed. This defect was resolved with the release of Foundry Frontend 6.229.0. The service was rolled out to all affected Foundry instances. No further...

CVE-2023-30963 Stored XSS in Foundry Slate Query Dropdown menu

A security defect was discovered in Foundry Frontend which enabled users to perform Stored XSS attacks in Slate if Foundry's CSP were to be bypassed. This defect was resolved with the release of Foundry Frontend 6.229.0. The service was rolled out to all affected Foundry instances. No further...

CVE-2023-30963

CVE-2023-30963 describes a Stored XSS vulnerability in Palantir Foundry Frontend (Slate component) that could be exploited if CSP protections were bypassed. Affected software is Foundry Frontend; the root cause is an XSS weakness in Slate dropdown handling when CSP is not properly enforced. The v...

CVE-2022-30963

creationtimestamp| type| source ---|---|--- 2022-05-17 18:27:37+00:00| seen| https://t.me/cibsecurity/42811 2025-11-06 06:11:39+00:00| seen| https://bsky.app/profile/FunctionalProgramming.activitypub.awakari.com.ap.brid.gy/post/3m4wvrrgqt3d2 2025-11-06 06:11:40+00:00| seen|...

CVE-2022-30963

Jenkins JDK Parameter Plugin 1.0 and earlier does not escape the name and description of JDK parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

CVE-2022-30963

Jenkins JDK Parameter Plugin 1.0 and earlier does not escape the name and description of JDK parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

CVE-2022-30963

Jenkins JDK Parameter Plugin 1.0 and earlier does not escape the name and description of JDK parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

CVE-2022-30963

CVE-2022-30963 affects Jenkins JDK Parameter Plugin (1.0 and earlier). The vulnerability is a stored XSS caused by not escaping the JDK parameter name and description in views that display parameters, enabling exploitation by attackers with Item/Configure permission on affected dashboards/pages.

CVE-2021-30963

CVE-2021-30963 affects macOS CoreAudio. A buffer overflow in handling audio content was fixed in Security Update 2021-008 ( Catalina ) and Big Sur 11.6.2. Public description notes parsing a maliciously crafted audio file may disclose user information. The Apple security content (HT212981/HT212979...