5 matches found
Joomla! XSS Vulnerability (20260102)
Joomla! is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla";...
Request Tracker 安全漏洞
Request Tracker is an issue and work order tracking system from Request Tracker, Inc. A security vulnerability exists in Request Tracker versions 5.0.4 through 5.0.8 and 6.0.0 through 6.0.1, which stems from a failure of the calendar invitation parsing feature to clean up HTML, which could lead t...
[20260102] - Core - XSS vectors in the pagebreak and pagenavigation plugins
Lack of output escaping leads to a XSS vector in the pagebreak and pagenavigation plugins...
com.nordstrom.ui-tools:selenium-foundation (>=28.5.1-s3 <=29.8.0-s3), com.sdl.lt:Testy (>=20.08.466.0_eb932e0 <=20.08.487.0_526db13) +7 more potentially affected by CVE-2025-4641 via io.github.bonigarcia:webdrivermanager (>=6.0.0 <=6.0.1)
io.github.bonigarcia:webdrivermanager MAVEN version =6.0.0, =28.5.1-s3, =20.08.466.0eb932e0, =1.0.0-Alpha1, =0.8.1.2, =1.1.6, =0.2.16.16appium, =0.2.23appium Source cves: CVE-2025-4641 Source advisory: SNYK:JAVA-IOGITHUBBONIGARCIA-10380065...
PT-2021-19288 · Vaadin · Com.Vaadin:Flow-Server
Name of the Vulnerable Software and Affected Versions: com.vaadin:flow-server versions 1.2.0 through 2.4.7 com.vaadin:flow-server versions 6.0.0 through 6.0.1 Description: The issue allows an attacker to access application classes and resources on the server via a crafted HTTP request. This is du...