Lucene search
K

116 matches found

OSV
OSV
added 2018/07/23 4:29 p.m.6 views

AZL-41294 CVE-2018-1999024 affecting package numpy for versions less than 1.26.3-4

MathJax version prior to version 2.7.4 contains a Cross Site Scripting XSS vulnerability in the \unicode macro that can result in Potentially untrusted Javascript running within a web browser. This attack appear to be exploitable via The victim must view a page where untrusted content is processe...

5.4CVSS6AI score0.01254EPSS
Exploits1References1
OSV
OSV
added 2018/07/23 4:29 p.m.4 views

UBUNTU-CVE-2018-1999024

MathJax version prior to version 2.7.4 contains a Cross Site Scripting XSS vulnerability in the \unicode macro that can result in Potentially untrusted Javascript running within a web browser. This attack appear to be exploitable via The victim must view a page where untrusted content is processe...

5.4CVSS5.7AI score0.01254EPSS
Exploits1References4
OSV
OSV
added 2018/07/23 4:29 p.m.5 views

DEBIAN-CVE-2018-1999024

MathJax version prior to version 2.7.4 contains a Cross Site Scripting XSS vulnerability in the \unicode macro that can result in Potentially untrusted Javascript running within a web browser. This attack appear to be exploitable via The victim must view a page where untrusted content is processe...

5.4CVSS6AI score0.01254EPSS
Exploits1References1
OSV
OSV
added 2018/07/23 4:29 p.m.12 views

CVE-2018-1999024

MathJax version prior to version 2.7.4 contains a Cross Site Scripting XSS vulnerability in the \unicode macro that can result in Potentially untrusted Javascript running within a web browser. This attack appear to be exploitable via The victim must view a page where untrusted content is processe...

5.4CVSS5.8AI score
Exploits0References2
CVE
CVE
added 2018/07/23 4:0 p.m.69 views

CVE-2018-1999024

CVE-2018-1999024 is a MathJax XSS vulnerability in the Unicode macro present in versions prior to 2.7.4. The issue allows potentially untrusted JavaScript to execute in a browser when a page processes untrusted content with MathJax. The vulnerability can be triggered by a victim viewing such cont...

5.4CVSS5.2AI score0.01254EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/07/23 4:0 p.m.25 views

CVE-2018-1999024

MathJax version prior to version 2.7.4 contains a Cross Site Scripting XSS vulnerability in the \unicode macro that can result in Potentially untrusted Javascript running within a web browser. This attack appear to be exploitable via The victim must view a page where untrusted content is processe...

5.3AI score0.01254EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2018/07/23 4:0 p.m.15 views

CVE-2018-1999024

MathJax version prior to version 2.7.4 contains a Cross Site Scripting XSS vulnerability in the \unicode macro that can result in Potentially untrusted Javascript running within a web browser. This attack appear to be exploitable via The victim must view a page where untrusted content is processe...

5.4CVSS5.3AI score0.01254EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2018/07/23 12:0 a.m.4 views

PT-2018-15203 · Mathjax +1 · Mathjax +1

Name of the Vulnerable Software and Affected Versions: MathJax versions prior to 2.7.4 Description: The issue concerns a Cross Site Scripting XSS vulnerability in the unicode macro. This vulnerability can result in potentially untrusted JavaScript running within a web browser. The attack appears ...

5.4CVSS5.5AI score0.01254EPSS
Exploits1References15
Openbugbounty
Openbugbounty
added 2016/04/05 10:35 a.m.11 views

mathjax.org XSS vulnerability

Vulnerable URL: https://www.mathjax.org/ Details: Description| Value ---|--- Patched:| Yes, at 25.09.2017 Latest check for patch:| 25.09.2017 11:38 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 140978 Google Pagerank| 7 VIP website status:| Yes Check mathjax.o...

6.3AI score
Exploits0
WPVulnDB
WPVulnDB
added 2014/08/01 10:58 a.m.10 views

Mathjax Latex 1.1 - Setting Manipulation CSRF

The MathJax-LaTeX WordPress plugin was affected by a Setting Manipulation CSRF security vulnerability...

2.6AI score
Exploits0References3Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Wordpress Mathjax Latex Plugin 1.1 - CSRF Vulnerability

No description provided by source. Title: Wordpress Mathjax Latex 1.1 Cross-Site Request Forgery Vulnerability Release Date: 25/03/13 Author: Junaid Hussain illSecure Research Group Contact: [email protected] | Website: illSecure.com Software Link:...

7.1AI score
Exploits0
Patchstack
Patchstack
added 2013/03/26 12:0 a.m.8 views

WordPress Mathjax Latex Plugin 1.1 - CSRF

Mathjax Latex plugin is prone to a cross-site request forgery. It allows to specify Javascript that will be loaded with each post. Also, it will be loaded onto the homepage of the WordPress blog. Solution Update the plugin...

1.1AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2013/03/26 12:0 a.m.16 views

WordPress Plugin Mathjax Latex 1.1 - Cross-Site Request Forgery

WordPress Plugin Mathjax Latex 1.1 - Cross-Site Request Forgery Title: Wordpress Mathjax Latex 1.1 Cross-Site Request Forgery Vulnerability Release Date: 25/03/13 Author: Junaid Hussain illSecure Research Group Contact: [email protected] | Website: illSecure.com Software Link:...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2013/03/26 12:0 a.m.30 views

WordPress Plugin Mathjax Latex 1.1 - Cross-Site Request Forgery

Title: Wordpress Mathjax Latex 1.1 Cross-Site Request Forgery Vulnerability Release Date: 25/03/13 Author: Junaid Hussain illSecure Research Group Contact: [email protected] | Website: illSecure.com Software Link: http://downloads.wordpress.org/plugin/mathjax-latex.1.1.zip Tested on...

7.4AI score
Exploits0
0day.today
0day.today
added 2013/03/25 12:0 a.m.19 views

Wordpress Mathjax Latex 1.1 CSRF Vulnerability

Exploit for php platform in category web applications Title: Wordpress Mathjax Latex 1.1 Cross-Site Request Forgery Vulnerability Release Date: 25/03/13 Author: Junaid Hussain illSecure Research Group Contact: email protected | Website: illSecure.com Software Link:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2013/03/25 12:0 a.m.29 views

WordPress Mathjax Latex 1.1 Cross Site Request Forgery

Title: Wordpress Mathjax Latex 1.1 Cross-Site Request Forgery Vulnerability Release Date: 25/03/13 Author: Junaid Hussain illSecure Research Group Contact: [email protected] | Website: illSecure.com Software Link: http://downloads.wordpress.org/plugin/mathjax-latex.1.1.zip Tested on...

0.1AI score
Exploits0
Rows per page
Query Builder