Lucene search
+L

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-37304

Malicious code in bioql PyPI...

7.8CVSS6.3AI score0.0016EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-37304

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the DoubleWiki extension for MediaWiki through 1.39.3. includes/DoubleWiki.php allows XSS via the column alignment feature...

5.4CVSS6.2AI score0.00497EPSS
Exploits1References2
NVD
NVD
added 2024/06/12 3:15 p.m.18 views

CVE-2024-37304

NuGet Gallery is a package repository that powers nuget.org. The NuGetGallery has a security vulnerability related to its handling of autolinks in Markdown content. While the platform properly filters out JavaScript from standard links, it does not adequately sanitize autolinks. This oversight...

6.1CVSS0.00656EPSS
Exploits0References3
CVE
CVE
added 2024/06/12 2:27 p.m.46 views

CVE-2024-37304

CVE-2024-37304 concerns NuGetGallery, the NuGet.org frontend/back-end, where Markdown autolinks were not properly sanitized. The vulnerability allows XSS via autolinks such as , since autolinks can be rendered with insufficient sanitization despite standard JavaScript link filtering. A patch was ...

6.1CVSS6AI score0.00656EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/06/12 2:27 p.m.31 views

CVE-2024-37304 NuGetGallery's Markdown Autolinks Processing Vulnerable to Cross-site Scripting

NuGet Gallery is a package repository that powers nuget.org. The NuGetGallery has a security vulnerability related to its handling of autolinks in Markdown content. While the platform properly filters out JavaScript from standard links, it does not adequately sanitize autolinks. This oversight...

6.1CVSS0.00656EPSS
Exploits0References3
OSV
OSV
added 2024/06/12 2:27 p.m.20 views

CVE-2024-37304 NuGetGallery's Markdown Autolinks Processing Vulnerable to Cross-site Scripting

NuGet Gallery is a package repository that powers nuget.org. The NuGetGallery has a security vulnerability related to its handling of autolinks in Markdown content. While the platform properly filters out JavaScript from standard links, it does not adequately sanitize autolinks. This oversight...

6.1CVSS5.6AI score0.00656EPSS
Exploits0References5
NVD
NVD
added 2023/06/30 5:15 p.m.25 views

CVE-2023-37304

An issue was discovered in the DoubleWiki extension for MediaWiki through 1.39.3. includes/DoubleWiki.php allows XSS via the column alignment feature...

5.4CVSS5.2AI score0.00497EPSS
Exploits1References2
OSV
OSV
added 2023/06/30 12:0 a.m.21 views

CVE-2023-37304

An issue was discovered in the DoubleWiki extension for MediaWiki through 1.39.3. includes/DoubleWiki.php allows XSS via the column alignment feature...

5.4CVSS5.9AI score0.00497EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2023/06/30 12:0 a.m.19 views

CVE-2023-37304

An issue was discovered in the DoubleWiki extension for MediaWiki through 1.39.3. includes/DoubleWiki.php allows XSS via the column alignment feature...

5.4CVSS6.1AI score0.00497EPSS
Exploits1References3
CVE
CVE
added 2023/06/30 12:0 a.m.44 views

CVE-2023-37304

CVE-2023-37304 affects the DoubleWiki extension for MediaWiki up to version 1.39.3. The issue is an XSS vulnerability in includes/DoubleWiki.php triggered by the column alignment feature. Exploitation details are not provided in the connected documents; no in‑the‑wild exploitation data is stated....

5.4CVSS5.2AI score0.00497EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2023/05/12 5:15 a.m.9 views

CVE-2022-37304

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

6.6AI score
Exploits0
Circl
Circl
added 2023/02/03 8:20 p.m.11 views

CVE-2021-37304

creationtimestamp| type| source ---|---|--- 2023-02-03 20:20:57+00:00| seen| https://t.me/cibsecurity/57478 2023-05-18 01:00:13+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-37304.yaml 2025-03-26 16:25:31+00:00| published-proof-of-concept...

7.5CVSS7.1AI score0.04013EPSS
Exploits0References3
OSV
OSV
added 2023/02/03 6:15 p.m.16 views

CVE-2021-37304

An Insecure Permissions issue in jeecg-boot 2.4.5 allows unauthenticated remote attackers to gain escalated privilege and view sensitive information via the httptrace interface...

7.5CVSS7.7AI score
Exploits0References1
Cvelist
Cvelist
added 2023/02/03 12:0 a.m.19 views

CVE-2021-37304

An Insecure Permissions issue in jeecg-boot 2.4.5 allows unauthenticated remote attackers to gain escalated privilege and view sensitive information via the httptrace interface...

7.9AI score0.04013EPSS
Exploits0References1
CVE
CVE
added 2023/02/03 12:0 a.m.85 views

CVE-2021-37304

CVE-2021-37304 : Insecure permissions in jeecg-boot 2.4.5 allow unauthenticated remote attackers to gain escalated privileges and view sensitive information via the httptrace interface. The root cause is insufficient permission checks, enabling information disclosure and privilege escalation. The...

7.5CVSS7.6AI score0.04013EPSS
Exploits0References1Affected Software1
CVE
CVE
added 1976/01/01 12:0 a.m.36 views

CVE-2022-37304

CVE-2022-37304 is rejected/not used and does not represent an active vulnerability entry.

7.4AI score
Exploits0
Rows per page
Query Builder