148 matches found
CVE-2026-38949
Cross-Site Scripting XSS vulnerability exists in HTMLy version 3.1.1 in the content creation functionality at the /add/content?type=image endpoint. The application fails to properly sanitize user input, allowing injection of arbitrary code...
CVE-2026-38949
Cross-Site Scripting XSS vulnerability exists in HTMLy version 3.1.1 in the content creation functionality at the /add/content?type=image endpoint. The application fails to properly sanitize user input, allowing injection of arbitrary code...
CVE-2026-38949
Cross-Site Scripting XSS vulnerability exists in HTMLy version 3.1.1 in the content creation functionality at the /add/content?type=image endpoint. The application fails to properly sanitize user input, allowing injection of arbitrary code...
CVE-2026-38949
Cross-Site Scripting XSS vulnerability exists in HTMLy version 3.1.1 in the content creation functionality at the /add/content?type=image endpoint. The application fails to properly sanitize user input, allowing injection of arbitrary code...
PT-2026-35748
Name of the Vulnerable Software and Affected Versions HTMLy version 3.1.1 Description A Cross-Site Scripting XSS issue exists in the content creation functionality at the '/add/content?type=image' endpoint. The application fails to properly sanitize user input, which allows the injection of...
CVE-2026-38949
Cross-Site Scripting XSS vulnerability exists in HTMLy version 3.1.1 in the content creation functionality at the /add/content?type=image endpoint. The application fails to properly sanitize user input, allowing injection of arbitrary code...
HTMLy 安全漏洞
HTMLy is an open-source PHP-based blog platform. Version 3.1.1 of HTMLy has a security vulnerability. This vulnerability stems from the content creation function at the /add/content?type=image endpoint, which fails to properly clean user input, potentially allowing for the injection of arbitrary...
EUVD-2026-26069
Cross-Site Scripting XSS vulnerability exists in HTMLy version 3.1.1 in the content creation functionality at the /add/content?type=image endpoint. The application fails to properly sanitize user input, allowing injection of arbitrary code...
CVE-2026-38949
HTMLy 3.1.1 is affected by an XSS in the content creation flow at /add/content?type=image due to insufficient input sanitization. The CVE records an overall CVSSv3.1 base score of 8.9 (HIGH) with network attack vector, low attack complexity, user interaction required, and CHANGED scope; impacts t...
HTMLy Cross Site Scripting
A cross site scripting vulnerability exists in HTMLy CMS. The vulnerability allows remote attackers to inject arbitrary web script or HTML. This issue is older research added to the archive...
CVE-2024-34191
htmly v2.9.6 was discovered to contain an arbitrary file deletion vulnerability via the deletepost function at admin.php. This vulnerability allows attackers to delete arbitrary files via a crafted request...
EUVD-2021-23297
Malware in sbrugna...
EUVD-2021-23298
Malware in sbrugna...
EUVD-2021-23296
Malware in sbrugna...
EUVD-2021-20061
Malware in sbrugna...
EUVD-2020-16506
Malware in sbrugna...
EUVD-2019-17739
Malware in sbrugna...
EUVD-2021-17557
Malware in sbrugna...
EUVD-2022-24431
Malicious code in bioql PyPI...
EUVD-2022-29768
Malicious code in bioql PyPI...