Lucene search
K

457 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-0630

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00989EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-1520

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.012EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-54346

Malicious code in bioql PyPI...

7.5CVSS7.8AI score0.00327EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3053

Malicious code in bioql PyPI...

6.1CVSS6.1AI score0.01452EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-1810

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00579EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-9490

Malicious code in bioql PyPI...

6.3CVSS6.3AI score0.00486EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-2530

Malicious code in bioql PyPI...

6.1CVSS7.1AI score0.01705EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-34182

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00505EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-2469

Malicious code in bioql PyPI...

6.3CVSS6.4AI score0.00469EPSS
Exploits1References5
Snyk
Snyk
added 2025/09/30 12:30 a.m.3 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the related asset selector. An attacker can execute arbitrary web scripts or inject malicious HTML by submitting crafted payloads into the First Name, Middle Name, or Last Name text fields. Details Cross-sit...

5.4CVSS5.4AI score0.00205EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-45699

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The endpoint /zabbix.php?action=export.valuemaps suffers from a Cross-Site Scripting vulnerability via the backurl parameter. This is caused by the reflection o...

7.5CVSS6.6AI score0.00327EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-25828

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. The non- jqueryMsg version of mw.message.parse doesn't escape HTML...

6.1CVSS6.7AI score0.01089EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/16 12:0 a.m.3 views

vue-i18n 跨站脚本漏洞

vue-i18n is an application from intlify open source. A cross-site scripting vulnerability exists in vue-i18n versions prior to 9.0.0 through 9.14.5, prior to 10.0.8, and prior to 11.1.0, which stems from insufficient HTML context parameter escaping and could lead to a DOM-type cross-site scriptin...

5.3CVSS5.7AI score0.0067EPSS
Exploits0References8
GithubExploit
GithubExploit
added 2025/06/14 7:8 a.m.389 views

Exploit for CVE-2025-46181

CVE-2025-46181 - Reflected XSS in an Online Appointment Bookin...

6.7AI score
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 10:14 a.m.5 views

CVE-2024-27794

Claris FileMaker Server before version 20.3.2 was susceptible to a reflected Cross-Site Scripting vulnerability due to an improperly handled parameter in the FileMaker WebDirect login endpoint. The vulnerability was resolved in FileMaker Server 20.3.2 by escaping the HTML contents of the login...

6.1CVSS6.2AI score0.00308EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:47 a.m.12 views

CVE-2024-21628

PrestaShop is an open-source e-commerce platform. Prior to version 8.1.3, the isCleanHtml method is not used on this this form, which makes it possible to store a cross-site scripting payload in the database. The impact is low because the HTML is not interpreted in BO, thanks to twig's escape...

6.1CVSS6AI score0.00389EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:58 a.m.9 views

CVE-2024-33859

An issue was discovered in Logpoint before 7.4.0. HTML code sent through logs wasn't being escaped in the "Interesting Field" Web UI, leading to XSS...

6.1CVSS6.9AI score0.00311EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:11 p.m.14 views

CVE-2022-36446

software/apt-lib.pl in Webmin before 1.997 lacks HTML escaping for a UI command...

9.8CVSS6.6AI score0.96049EPSS
Exploits8References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:20 p.m.8 views

CVE-2021-41132

OMERO.web provides a web based client and plugin infrastructure. In versions prior to 5.11.0, a variety of templates do not perform proper sanitization through HTML escaping. Due to the lack of sanitization and use of jQuery.html, there are a whole host of cross-site scripting possibilities with...

9.8CVSS5.9AI score0.01006EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 7:48 p.m.10 views

CVE-2021-3346

Foris before 101.1.1, as used in Turris OS, lacks certain HTML escaping in the login template...

9.8CVSS6.8AI score0.01594EPSS
Exploits0References1
Rows per page
Query Builder