Lucene search
K

18 matches found

NVD
NVD
added 6 hours ago5 views

CVE-2026-61492

In JetBrains YouTrack before 2026.2.17394 stored XSS via article titles in digest emails was possible...

6.1CVSS
Exploits0References1
EUVD
EUVD
added 7 hours ago4 views

EUVD-2026-42915

In JetBrains YouTrack before 2026.2.17394 stored XSS via article titles in digest emails was possible...

6.1CVSS6.1AI score
Exploits0References1
CVE
CVE
added 7 hours ago8 views

CVE-2026-61492

The provided connected documents identify a concrete vulnerability in JetBrains YouTrack: stored XSS via article titles in digest emails, affecting versions prior to 2026.2.17394. The exact root cause is not detailed beyond this description, and there are no explicit exploit details or remediatio...

6.1CVSS6.1AI score
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/05/02 12:0 a.m.10 views

WordPress plugin Total 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.4CVSS5.8AI score0.00194EPSS
Exploits0References1
OSV
OSV
added 2026/04/10 8:49 a.m.2 views

BIT-JOOMLA-2026-21632 Joomla! Core - [20260304] - XSS vectors in various article title outputs

Lack of output escaping for article titles leads to XSS vectors in various locations...

8.4CVSS5.7AI score0.0019EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/02 10:53 a.m.3 views

CVE-2026-21632

Lack of output escaping for article titles leads to XSS vectors in various locations...

8.4CVSS5.8AI score0.0019EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/01 12:31 p.m.4 views

EUVD-2026-17859

Lack of output escaping for article titles leads to XSS vectors in various locations...

8.4CVSS5.8AI score0.0019EPSS
Exploits0References2
NVD
NVD
added 2026/04/01 10:16 a.m.2 views

CVE-2026-21632

Lack of output escaping for article titles leads to XSS vectors in various locations...

8.4CVSS0.0019EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/01 9:3 a.m.4 views

CVE-2026-21632 Joomla! Core - [20260304] - XSS vectors in various article title outputs

Lack of output escaping for article titles leads to XSS vectors in various locations...

8.4CVSS5.8AI score0.0019EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/01 9:3 a.m.2 views

CVE-2026-21632

Lack of output escaping for article titles leads to XSS vectors in various locations...

8.4CVSS5.8AI score0.0019EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/04/01 9:3 a.m.28 views

CVE-2026-21632 Joomla! Core - [20260304] - XSS vectors in various article title outputs

Lack of output escaping for article titles leads to XSS vectors in various locations...

8.4CVSS0.0019EPSS
Exploits0References1
CVE
CVE
added 2026/04/01 9:3 a.m.24 views

CVE-2026-21632

Summary (CVE-2026-21632) : Joomla! Core suffers XSS due to lack of output escaping for article titles, enabling injected scripts in various article-title outputs. Connected sources confirm this affects Joomla core output paths and document titles, with multiple vendor references and CVSS-based as...

8.4CVSS5.8AI score0.0019EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/04/01 12:0 a.m.6 views

Joomla! CMS 跨站脚本漏洞

Joomla! CMS is a content management system developed under the open source Joomla! framework. Joomla! CMS has a cross-site scripting vulnerability, which stems from the lack of output escaping in article titles, potentially leading to cross-site scripting attacks...

8.4CVSS5.6AI score0.0019EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.7 views

PT-2026-29504

Name of the Vulnerable Software and Affected Versions versions affected versions not specified Description A lack of output escaping for article titles creates cross-site scripting XSS vectors in multiple areas. Recommendations At the moment, there is no information about a newer version that...

8.4CVSS5.7AI score0.0019EPSS
Exploits0References4
CVE
CVE
added 2025/04/17 12:0 a.m.60 views

CVE-2025-28101

CVE-2025-28101 affects flaskBlog v2.6.1, where the /post/{postTitle} endpoint allows arbitrary file deletion by crafting a POST request, enabling deletion of article titles created by other users. Documented details confirm the vulnerable component and impact (I/A low, C=none) with CVSSv3.1 score...

6.5CVSS6.6AI score0.00199EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/01/11 11:0 p.m.11 views

CVE-2022-22123

In Halo, versions v1.0.0 to v1.4.17 latest are vulnerable to Stored Cross-Site Scripting XSS in the article title. An authenticated attacker can inject arbitrary javascript code that will execute on a victim’s server...

5.4CVSS6.3AI score0.00708EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2016/12/02 12:0 a.m.2 views

Stored Cross-Site Vulnerability in ASPCMS

ASPCMS is a set of open source CMS website building system. ASPCMS storage type cross-site vulnerability , due to aspcms background to add article titles at the special character filtering is not strict , attackers can use the vulnerability to launch xss storage type cross-site scripting attacks...

6.3AI score
Exploits0References1
exploitpack
exploitpack
added 2010/07/13 12:0 a.m.24 views

AJ Article 3.0 - Cross-Site Scripting

AJ Article 3.0 - Cross-Site Scripting 1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 vendor URL :http://www.ajsquare.com/ Google Dork :Powered By: AJ Square Inc Author : Sid3^effects aKa HaRi special thanks to : r007...

6.8AI score
Exploits0
Rows per page
Query Builder