Lucene search
+L

6 matches found

OpenVAS
OpenVAS
added 2026/01/07 12:0 a.m.3 views

Joomla! XSS Vulnerability (20260102)

Joomla! is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla";...

8.4CVSS4.7AI score0.00175EPSS
Exploits0References1
OSV
OSV
added 2025/11/13 5:49 p.m.6 views

CVE-2025-64706 Typebot IDOR Vulnerability: Unauthorized API Token Deletion and Exposure

Typebot is an open-source chatbot builder. In version 3.9.0 up to but excluding version 3.13.0, an Insecure Direct Object Reference IDOR vulnerability exists in the API token management endpoint. An authenticated attacker can delete any user's API token and retrieve its value by simply knowing th...

5CVSS6.7AI score0.00228EPSS
Exploits1References3
Talos
Talos
added 2025/08/25 12:0 a.m.6 views

The Biosig Project libbiosig GDF parsing integer overflow to heap-based buffer overflow vulnerability

Talos Vulnerability Report TALOS-2025-2233 The Biosig Project libbiosig GDF parsing integer overflow to heap-based buffer overflow vulnerability August 25, 2025 CVE Number CVE-2025-52581 SUMMARY An integer overflow vulnerability exists in the GDF parsing functionality of The Biosig Project...

9.8CVSS7.1AI score0.00634EPSS
Exploits1
CVE
CVE
added 2025/04/01 2:51 p.m.49 views

CVE-2025-31806

CVE-2025-31806 affects Webling (WordPress plugin Webling). It is a Stored XSS due to improper neutralization of input during web page generation, impacting Webling versions up to 3.9.0. Exploitation requires authentication (Administrator). Wordfence notes the vulnerability and indicates a patch i...

5.9CVSS7.2AI score0.00347EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2024/04/04 3:30 p.m.4 views

com.github.t1:wunderbar.demo.product (=3.3), com.mobiera.libs:aircast-api-jakarta (=1.3) +600 more potentially affected by CVE-2024-2700 via io.quarkus:quarkus-core (>=3.9.0.CR1 <=3.9.1)

io.quarkus:quarkus-core MAVEN version =3.9.0.CR1, =0.3.0, =0.2.3, =0.3.4, =0.9.3, =0.9.9, =3.3.0, =3.3.0.CR2 and more Source cves: CVE-2024-2700 Source advisory: OSV:GHSA-F8H5-V2VG-46RR...

7CVSS7AI score0.00286EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/01/12 12:0 a.m.4 views

PT-2021-15379 · Joomla · Joomla!

Name of the Vulnerable Software and Affected Versions: Joomla! versions 3.9.0 through 3.9.23 Description: The issue is related to a lack of escaping in the aria-label attribute of the mod breadcrumbs module, which allows XSS attacks. Recommendations: For Joomla! versions 3.9.0 through 3.9.23,...

6.1CVSS6.3AI score0.81167EPSS
Exploits0References7
Rows per page
Query Builder