CVE-2026-8245

Concrete CMS 9.5.0 and below is vulnerable to Reflected XSS in Legacy Pagination via HTML attribute injection. Concrete\Core\Legacy\Pagination builds pagination links by raw-interpolating its $URL field into href="" . Any authenticated admin or report viewer with access to...

CVE-2026-8245

creationtimestamp| type| source ---|---|--- 2026-05-22 02:48:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmfwclbti72p...

CVE-2026-8245 Concrete CMS 9.5.0 and below is vulnerable to Reflected XSS in Legacy Pagination via HTML attribute injection

Concrete CMS 9.5.0 and below is vulnerable to Reflected XSS in Legacy Pagination via HTML attribute injection. Concrete\Core\Legacy\Pagination builds pagination links by raw-interpolating its $URL field into href="" . Any authenticated admin or report viewer with access to...

MINI-XCVC-34R8-8245

Bulletin has no description...

MAL-2025-8245 Malicious code in @landmineaknpm2/delectus-quibusdam-consequuntur (npm)

The package @landmineaknpm2/delectus-quibusdam-consequuntur was found to contain malicious code...

CVE-2025-8245

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formMultiAPVLAN of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...

CVE-2020-8245

Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP...

WordPress GamiPress - Reset User plugin <= 1.0.0 - GamiPress User Data Removal via CSRF vulnerability

WordPress GamiPress - Reset User plugin = 1.0.0 - GamiPress User Data Removal via CSRF vulnerability discovered by Norbert Hofmann in WordPress Plugin GamiPress - Reset User versions = 1.0.0...

CVE-2017-8245 affecting package kernel 5.4.51-11

CVE-2017-8245 affecting package kernel 5.4.51-11. An upgraded version of the package is available that resolves this issue...

CVE-2020-8245

Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP...

CVE-2020-8245

Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP...

CVE-2020-8245

Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP...

CVE-2020-8245

Citrix advisory CTX281474 details CVE-2020-8245 affecting Citrix ADC, Citrix Gateway, and related SD-WAN WANOP appliances. Root cause: HTML Injection due to improper input validation in the SSL VPN web portal. Impact: HTML content injection by an authenticated victim who must open an attacker-con...

Privilege escalation

An elevation of privilege vulnerability exists when Office Web Apps Server 2013 and Office Online Server fail to properly handle web requests, aka "Microsoft Office Elevation of Privilege Vulnerability." This affects Microsoft Office, Microsoft Office Online Server. This CVE ID is unique from...

CVE-2018-8245

CVE-2018-8245 (Microsoft Publisher RCE) is a remote code execution flaw in Microsoft Publisher caused by failure to lock down the Local Machine zone when instantiating OLE objects. Affected product: Publisher (Publisher 2010 SP2 noted in related materials). The root cause is improper handling of ...

Microsoft Office CVE-2018-8245 Privilege Escalation Vulnerability

Description Microsoft Office is prone to a privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Publisher 2010 Service Pack 2 32-bit editions Microsoft Publisher 2010 Service Pack 2 64-bit editions Recommendations Run...

Security Updates for Microsoft Publisher Products (June 2018)

The Microsoft Publisher Products are missing a security update. It is, therefore, affected by the following vulnerability : - An elevation of privilege vulnerability exists when Microsoft Publisher fails to utilize features that lock down the Local Machine zone when instantiating OLE objects. An...

CVE-2017-8245

CVE-2017-8245 affects Android releases from CAF using the Linux kernel. The issue occurs while processing a voice SVC request with a payload size that overflows its declared size, causing an out-of-bounds memory copy. The initial documents provide no vendor/version specifics beyond CAF Android an...

CVE-2016-8245

This CVE entry is rejected/not used; it does not represent an active vulnerability entry.

CVE-2016-8245

...