CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

OSV•added 2024/03/06 11:3 a.m.•21 views

BIT-REDMINE-2022-44637

Redmine before 4.2.9 and 5.0.x before 5.0.4 allows persistent XSS in its Textile formatter due to improper sanitization in Redcloth3 Textile-formatted fields. Depending on the configuration, this may require login as a registered user...

6.1CVSS5.9AI score0.00669EPSS

Exploits0References2

Veracode•added 2023/03/11 5:18 a.m.•18 views

Cross-site Scripting (XSS)

redmine is vulnerable to Cross-site Scripting XSS attacks. The library contains persistent XSS in its Textile formatter due to improper sanitization in Redcloth3 Textile-formatted fields. Depending on the configuration, this may require login as a registered user...

6.1CVSS5.5AI score0.00669EPSS

Exploits0References2Affected Software1

NVD•added 2022/12/12 3:15 a.m.•7 views

CVE-2022-44637

6.1CVSS0.00669EPSS

Exploits0References1

OSV•added 2022/12/12 3:15 a.m.•7 views

CVE-2022-44637

6.1CVSS6AI score

Exploits0References1

Prion•added 2022/12/12 3:15 a.m.•11 views

Design/Logic Flaw

5.8CVSS5.9AI score0.00669EPSS

Exploits0References1Affected Software1

CNNVD•added 2022/12/12 12:0 a.m.•3 views

Redmine 跨站脚本漏洞

Redmine is a set of open source Web-based project management and defect tracking tools . The product provides features such as project management, issue tracking and role-based access control. A cross-site scripting vulnerability exists in Redmine versions prior to 4.2.9 and 5.0.x through 5.0.4...

6.1CVSS5.8AI score0.00669EPSS

Exploits0References3