26 matches found
EUVD-2025-23461
Malicious code in bioql PyPI...
EUVD-2025-23460
Malicious code in bioql PyPI...
EUVD-2025-23463
Malicious code in bioql PyPI...
XWiki Contrib Mocca Calendar Application 安全漏洞
XWiki Contrib Mocca Calendar Application is an XWiki plugin from XWiki Contrib open source. A security vulnerability exists in XWiki Contrib Mocca Calendar Application versions prior to 9.14, which stems from a remote code execution in the blog application...
CVE-2025-52133
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title upon calendar import...
CVE-2025-52132
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title to the view event page...
CVE-2025-52131
The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field...
CVE-2025-52133
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title upon calendar import...
CVE-2025-52133
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title upon calendar import...
CVE-2025-52132
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title to the view event page...
CVE-2025-52132
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title to the view event page...
CVE-2025-52131
The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field...
CVE-2025-52131
The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field...
PT-2025-31766 · Unknown · Mocca Calendar
Name of the Vulnerable Software and Affected Versions: Mocca Calendar versions prior to 2.15 Description: The Mocca Calendar application is susceptible to a cross-site scripting XSS issue. This occurs through a specially crafted title during calendar import. Recommendations: Update Mocca Calendar...
CVE-2025-52131
The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field...
CVE-2025-52132
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title to the view event page...
CVE-2025-52131
The Mocca Calendar application for XWiki is affected by a cross-site scripting (XSS) vulnerability in the background or text color fields, exploitable in versions prior to 2.15. Root cause: input in UI fields not properly sanitized, allowing injected scripts to execute in a victim’s browser. Affe...
PT-2025-31764 · Unknown · Mocca Calendar
Name of the Vulnerable Software and Affected Versions: Mocca Calendar versions prior to 2.15 Description: The Mocca Calendar application allows for cross-site scripting XSS via the background or text color field. Recommendations: Update Mocca Calendar to version 2.15 or later...
XWiki Contrib Mocca Calendar Application 跨站脚本漏洞
XWiki Contrib Mocca Calendar Application is an open source XWiki plugin for XWiki Contrib. A cross-site scripting vulnerability exists in XWiki Contrib Mocca Calendar Application versions prior to 2.15, which stems from cross-site scripting in the background or text color fields...
CVE-2025-52133
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title upon calendar import...