Lucene search
K

535 matches found

OSV
OSV
added 2026/01/16 5:16 a.m.3 views

UBUNTU-CVE-2026-0858

Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to...

6.1CVSS6.1AI score0.00303EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/01/16 5:0 a.m.31 views

CVE-2026-0858

Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to...

6.1CVSS0.00303EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/16 5:0 a.m.3 views

CVE-2026-0858

Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to...

6.1CVSS5.7AI score0.00303EPSS
Exploits0References4
CVE
CVE
added 2026/01/16 5:0 a.m.27 views

CVE-2026-0858

CVE-2026-0858 affects net.sourceforge.plantuml:plantuml prior to 1.2026.0, where GraphViz diagram attributes are not sufficiently sanitized, enabling Stored XSS that can inject JavaScript into generated SVG and lead to arbitrary script execution when rendered by applications. Connected sources co...

6.1CVSS5.9AI score0.00303EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2026/01/16 5:0 a.m.5 views

CVE-2026-0858

Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to...

6.1CVSS5.8AI score0.00303EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/16 5:0 a.m.2 views

CVE-2026-0858

Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to...

6.1CVSS5.9AI score0.00303EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/16 5:0 a.m.5 views

EUVD-2026-2918

Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to...

6.1CVSS5.8AI score0.00303EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/01/16 12:0 a.m.2 views

CVE-2026-0858

Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to...

6.1CVSS6.2AI score0.00303EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/16 12:0 a.m.11 views

PlantUML security vulnerabilities

PlantUML is an open-source component that allows for rapid creation of diagrams from textual descriptions. Versions of PlantUML prior to 1.2026.0 contained security vulnerabilities, which stemmed from insufficient cleanup of interactive properties in GraphViz diagrams, potentially leading to...

6.1CVSS5.6AI score0.00303EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/16 12:0 a.m.6 views

PT-2026-3219

Name of the Vulnerable Software and Affected Versions net.sourceforge.plantuml:plantuml versions prior to 1.2026.0 Description The software is susceptible to a Stored Cross-Site Scripting XSS issue because of inadequate sanitization of interactive attributes within GraphViz diagrams. A specially...

6.1CVSS5.8AI score0.00303EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-0858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attribute...

6.1CVSS6.2AI score0.00303EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.4 views

TencentOS Server 3: graphviz (TSSA-2023:0148)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0148 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.8CVSS7AI score0.02618EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.0 views

EUVD-2020-9961

Malware in sbrugna...

7.8CVSS6.9AI score0.02618EPSS
Exploits1References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-1141

Malware in sbrugna...

4CVSS4.6AI score0.00491EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-2732

Malware in sbrugna...

8.8CVSS8.6AI score0.05037EPSS
Exploits1References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-19259

Malware in sbrugna...

6.5CVSS5.7AI score0.027EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-4536

Malware in sbrugna...

8.5CVSS6.1AI score0.05061EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-8982

Malware in sbrugna...

7.5CVSS6.9AI score0.05569EPSS
Exploits1References16
EUVD
EUVD
added 2025/10/07 12:30 a.m.29 views

EUVD-2021-0621

Malware in sbrugna...

9.8CVSS9.3AI score0.02057EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-2272

Malware in sbrugna...

5.5CVSS5.7AI score0.01719EPSS
Exploits0References10
Rows per page
Query Builder