4 matches found
EUVD-2021-0461
Malware in sbrugna...
CVE-2024-11319
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in django CMS Association django-cms allows Cross-Site Scripting XSS. This issue affects django-cms: 3.11.7, 3.11.8, 4.1.2, 4.1.3...
CVE-2021-29434 Improper validation of URLs ('Cross-site Scripting') in Wagtail rich text fields
Wagtail is a Django content management system. In affected versions of Wagtail, when saving the contents of a rich text field in the admin interface, Wagtail does not apply server-side checks to ensure that link URLs use a valid protocol. A malicious user with access to the admin interface could...
Django CMS 'Groups' HTML Injection Vulnerability
Django CMS is Django Software Foundation of a set of open source based on the Django framework for content management systems . Django CMS suffers from an HTML injection vulnerability that allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be...