Lucene search
K

187 matches found

OSV
OSV
added 2025/11/20 3:30 p.m.2 views

GHSA-H369-CPJJ-QFFF phppgadmin vulnerable to Cross-site Scripting

phpPgAdmin versions 7.13.0 and earlier contain multiple cross-site scripting XSS vulnerabilities across various components. User-supplied inputs from $REQUEST parameters are reflected in HTML output without proper encoding or sanitization in multiple locations including sequences.php, indexes.php...

5.3CVSS6.3AI score0.00198EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2025/11/20 3:30 p.m.6 views

phppgadmin vulnerable to Cross-site Scripting

phpPgAdmin versions 7.13.0 and earlier contain multiple cross-site scripting XSS vulnerabilities across various components. User-supplied inputs from $REQUEST parameters are reflected in HTML output without proper encoding or sanitization in multiple locations including sequences.php, indexes.php...

6.1CVSS6.4AI score0.00198EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/10/17 5:40 p.m.3 views

JLSEC-2025-84 An issue was discovered in xmllint (from libxml2) before 2.11.8 and 2.12.x before 2.12.7

An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c...

7.5CVSS7.2AI score0.02298EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-23277

Malware in sbrugna...

7.5CVSS7.4AI score0.01305EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2021-0034

Malware in sbrugna...

7.5CVSS7.4AI score0.01106EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-16915

Malware in sbrugna...

6.1CVSS6.7AI score0.00761EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-0465

Malware in sbrugna...

6.1CVSS6.2AI score0.01257EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-25168

Malicious code in bioql PyPI...

4.8CVSS5.1AI score0.00552EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5981

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.01351EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-27395

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00309EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-43086

Malicious code in bioql PyPI...

6.1CVSS5.8AI score0.00767EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2025/09/23 3:9 p.m.7 views

DNN Vulnerable to Stored Cross-Site Scripting (XSS) in the Prompt module

Summary The Prompt module allows execution of commands that can return raw HTML. Malicious input, even if sanitized for display elsewhere, can be executed when processed through certain commands, leading to potential script execution XSS. Description The application sanitizes most user-submitted...

9CVSS7.2AI score0.0051EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-39510

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting XSS Vulnerability...

6.1CVSS6.8AI score0.00713EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/06/13 5:51 p.m.11 views

CVE-2025-49587 XWiki does not require right warnings for notification displayer objects

XWiki is an open-source wiki software platform. When a user without script right creates a document with an XWiki.Notifications.Code.NotificationDisplayerClass object, and later an admin edits and saves that document, the possibly malicious content of that object is output as raw HTML, allowing X...

6.4CVSS5.8AI score0.00352EPSS
Exploits1References3
OSV
OSV
added 2025/06/13 5:51 p.m.8 views

CVE-2025-49587 XWiki does not require right warnings for notification displayer objects

XWiki is an open-source wiki software platform. When a user without script right creates a document with an XWiki.Notifications.Code.NotificationDisplayerClass object, and later an admin edits and saves that document, the possibly malicious content of that object is output as raw HTML, allowing X...

6.4CVSS6.1AI score0.00352EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.3 views

CVE-2020-0872

A remote code execution vulnerability exists in Application Inspector version v1.0.23 or earlier when the tool reflects example code snippets from third-party source files into its HTML output, aka 'Remote Code Execution Vulnerability in Application Inspector'...

9.6CVSS8.4AI score0.09851EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/02 9:46 p.m.22 views

CVE-2025-21572

OpenGrok 1.13.25 has a reflected Cross-Site Scripting XSS issue when producing the history view page. This happens through improper handling of path segments. The application reflects unsanitized user input into the HTML output...

6.1CVSS0.00202EPSS
Exploits0References1
CVE
CVE
added 2025/05/02 9:46 p.m.68 views

CVE-2025-21572

CVE-2025-21572 affects OpenGrok 1.13.25. The vulnerability is a reflected Cross-Site Scripting (XSS) in the history view page caused by improper handling of path segments, resulting in unsanitized user input being reflected in HTML output. Reported impact per CVSS: MEDIUM (6.1), with network atta...

6.1CVSS5.8AI score0.00202EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/02 9:46 p.m.6 views

CVE-2025-21572

OpenGrok 1.13.25 has a reflected Cross-Site Scripting XSS issue when producing the history view page. This happens through improper handling of path segments. The application reflects unsanitized user input into the HTML output...

6.1CVSS6AI score0.00202EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/02 12:0 a.m.5 views

PT-2025-18925 · Opengrok · Opengrok

Name of the Vulnerable Software and Affected Versions: OpenGrok version 1.13.25 Description: The issue is a reflected Cross-Site Scripting XSS problem that occurs when the application generates the history view page. This happens due to improper handling of path segments, causing the application ...

6.1CVSS5.2AI score0.00202EPSS
Exploits0References8
Rows per page
Query Builder