CVE-2023-1237 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

CVE-2023-1243

CVE-2023-1243 describes a Stored Cross-site Scripting (XSS) vulnerability in the open‑source knowledge base software answerdev/answer prior to version 1.0.6. Root cause: user input stored by the application is displayed without proper sanitization, enabling script injection. Affected product: ans...

CVE-2023-1239 Cross-site Scripting (XSS) - Reflected in answerdev/answer

Cross-site Scripting XSS - Reflected in GitHub repository answerdev/answer prior to 1.0.6...

CVE-2023-1240 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

CVE-2023-1264

NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1392...

Amazon Linux 2 : vim (ALAS-2023-1975)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-1975 advisory. A heap buffer overflow vulnerability was found in vim's inscomplinfercasegettext function of the src/insexpand.c file. This flaw occurs when vim tries to access uninitialized memory when completi...

CVE-2023-1197

Cross-site Scripting XSS - Stored in GitHub repository uvdesk/community-skeleton prior to 1.1.0...

Cross site scripting

Cross-site Scripting XSS - Stored in GitHub repository uvdesk/community-skeleton prior to 1.1.0...

CVE-2023-1211 SQL Injection in phpipam/phpipam

SQL Injection in GitHub repository phpipam/phpipam prior to v1.5.2...

CVE-2023-0734

Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.4...

Cross site scripting

Cross-site Scripting XSS - Stored in GitHub repository icret/easyimages2.0 prior to 2.6.7...

CVE-2023-1181 Cross-site Scripting (XSS) - Stored in icret/easyimages2.0

Cross-site Scripting XSS - Stored in GitHub repository icret/easyimages2.0 prior to 2.6.7...

CVE-2023-0734 Improper Authorization in wallabag/wallabag

Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.4...

CVE-2023-0734 Improper Authorization in wallabag/wallabag

Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.4...

CVE-2023-1181 Cross-site Scripting (XSS) - Stored in icret/easyimages2.0

Cross-site Scripting XSS - Stored in GitHub repository icret/easyimages2.0 prior to 2.6.7...

CVE-2023-1175 Incorrect Calculation of Buffer Size in vim/vim

Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378...

CVE-2023-1175

Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378...

CVE-2023-1170

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376...

Heap overflow

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1376...

Cockpit Uses Platform-Dependent Third Party Components

Use of Platform-Dependent Third Party Components in GitHub repository cockpit-hq/cockpit 2.3.9 and prior. A patch is available and anticipated to be part of version 2.4.0...