Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/04/26 1:53 a.m.5 views

SUSE CVE-2023-30609

matrix-react-sdk is a react-based SDK for inserting a Matrix chat/VoIP client into a web page. Prior to version 3.71.0, plain text messages containing HTML tags are rendered as HTML in the search results. To exploit this, an attacker needs to trick a user into searching for a specific message...

5.4CVSS6.4AI score0.00617EPSS
Exploits0References2
Circl
Circl
added 2023/04/26 12:25 a.m.6 views

CVE-2023-30609

creationtimestamp| type| source ---|---|--- 2023-04-26 00:25:16+00:00| seen| https://t.me/cibsecurity/62855...

5.4CVSS5AI score0.00617EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/04/26 12:0 a.m.24 views

FreeBSD : element-web -- matrix-react-sdk vulnerable to HTML injection in search results via plaintext message highlighting (c676bb1b-e3f8-11ed-b37b-901b0e9408dc)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the c676bb1b-e3f8-11ed-b37b-901b0e9408dc advisory. - matrix-react-sdk is a react-based SDK for inserting a Matrix chat/VoIP client into a web page. Prior ...

5.4CVSS5.1AI score0.00617EPSS
Exploits0References3
NVD
NVD
added 2023/04/25 9:15 p.m.33 views

CVE-2023-30609

matrix-react-sdk is a react-based SDK for inserting a Matrix chat/VoIP client into a web page. Prior to version 3.71.0, plain text messages containing HTML tags are rendered as HTML in the search results. To exploit this, an attacker needs to trick a user into searching for a specific message...

5.4CVSS5.5AI score0.00617EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/04/25 8:58 p.m.8 views

CVE-2023-30609 matrix-react-sdk vulnerable to HTML injection in search results via plaintext message highlighting

matrix-react-sdk is a react-based SDK for inserting a Matrix chat/VoIP client into a web page. Prior to version 3.71.0, plain text messages containing HTML tags are rendered as HTML in the search results. To exploit this, an attacker needs to trick a user into searching for a specific message...

5.4CVSS6.5AI score0.00617EPSS
Exploits0References3
OSV
OSV
added 2023/04/25 8:58 p.m.25 views

CVE-2023-30609 matrix-react-sdk vulnerable to HTML injection in search results via plaintext message highlighting

matrix-react-sdk is a react-based SDK for inserting a Matrix chat/VoIP client into a web page. Prior to version 3.71.0, plain text messages containing HTML tags are rendered as HTML in the search results. To exploit this, an attacker needs to trick a user into searching for a specific message...

5.4CVSS4.8AI score0.00617EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/04/25 8:58 p.m.35 views

CVE-2023-30609 matrix-react-sdk vulnerable to HTML injection in search results via plaintext message highlighting

matrix-react-sdk is a react-based SDK for inserting a Matrix chat/VoIP client into a web page. Prior to version 3.71.0, plain text messages containing HTML tags are rendered as HTML in the search results. To exploit this, an attacker needs to trick a user into searching for a specific message...

5.4CVSS5.8AI score0.00617EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2023/04/25 8:58 p.m.49 views

CVE-2023-30609

matrix-react-sdk is a react-based SDK for inserting a Matrix chat/VoIP client into a web page. Prior to version 3.71.0, plain text messages containing HTML tags are rendered as HTML in the search results. To exploit this, an attacker needs to trick a user into searching for a specific message...

5.4CVSS5AI score0.00617EPSS
Exploits0
CVE
CVE
added 2023/04/25 8:58 p.m.85 views

CVE-2023-30609

The CVE-2023-30609 issue affects matrix-react-sdk prior to version 3.71.0, where plain text messages containing HTML tags rendered in search results are treated as HTML. Exploitation requires tricking a user into searching for a specific message containing an HTML payload; the vulnerability is mi...

5.4CVSS5AI score0.00617EPSS
Exploits0References3Affected Software1
vulnersOsv
vulnersOsv
added 2023/04/25 7:48 p.m.6 views

matrix-react-skin (>=0.0.1 <=0.0.2), vector-web (=0.3.0) potentially affected by CVE-2023-30609 via matrix-react-sdk (>=0.0.1 <=0.2.0)

matrix-react-sdk NPM version =0.0.1, =0.0.1, =0.0.2 - vector-web =0.3.0 Source cves: CVE-2023-30609 Source advisory: OSV:GHSA-XV83-X443-7RMW...

5.4CVSS6AI score0.00617EPSS
Exploits0
Rows per page
Query Builder