Lucene search
K

67 matches found

RedhatCVE
RedhatCVE
added 2025/12/01 2:16 p.m.6 views

CVE-2025-13784

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS5.6AI score0.00239EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/30 9:30 a.m.7 views

EUVD-2025-199925

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS3AI score0.00239EPSS
Exploits1References5
OSV
OSV
added 2025/11/30 9:30 a.m.4 views

GHSA-92X3-MFJP-J3H3 yungifez Skuul School Management System vulnerable to XSS via SVG

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS5.7AI score0.00239EPSS
Exploits1References6
OSV
OSV
added 2025/11/30 7:15 a.m.9 views

CVE-2025-13784

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS4.1AI score0.00239EPSS
Exploits1References4
NVD
NVD
added 2025/11/30 7:15 a.m.9 views

CVE-2025-13784

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS0.00239EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/11/30 7:2 a.m.4 views

CVE-2025-13784 yungifez Skuul School Management System SVG File edit cross site scripting

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS5.4AI score0.00239EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/11/30 7:2 a.m.13 views

CVE-2025-13784 yungifez Skuul School Management System SVG File edit cross site scripting

A weakness has been identified in yungifez Skuul School Management System up to 2.6.5. This vulnerability affects unknown code of the file /dashboard/schools/1/edit of the component SVG File Handler. This manipulation causes cross site scripting. The attack is possible to be carried out remotely...

4.8CVSS0.00239EPSS
Exploits1References4
CVE
CVE
added 2025/11/30 7:2 a.m.13 views

CVE-2025-13784

CVE-2025-13784 affects yungifez Skuul School Management System up to version 2.6.5. The vulnerability lies in the SVG File Handler component, specifically in the /dashboard/schools/1/edit path, where manipulation enables cross-site scripting. The issue is exploitable remotely and exploits have be...

4.8CVSS3.4AI score0.00239EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2025/11/06 5:13 p.m.7 views

Cross-site Scripting (XSS)

novosga/novosga is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper sanitization of user-supplied input in the logoNavbar/logoLogin parameters within the /admin component’s SVG File Handler, which allows an attacker to inject and execute arbitrary web scripts remotely...

4.8CVSS7AI score0.00288EPSS
Exploits0References9Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/14 1:40 a.m.15 views

CVE-2025-11655

A security flaw has been discovered in Total.js Flow up to 673ef9144dd25d4f4fd4fdfda5af27f230198924. The impacted element is an unknown function of the component SVG File Handler. Performing manipulation results in unrestricted upload. The attack can be initiated remotely. The exploit has been...

5.8CVSS6.6AI score0.00253EPSS
Exploits0References1
NVD
NVD
added 2025/10/13 2:15 a.m.4 views

CVE-2025-11655

A security flaw has been discovered in Total.js Flow up to 673ef9144dd25d4f4fd4fdfda5af27f230198924. The impacted element is an unknown function of the component SVG File Handler. Performing manipulation results in unrestricted upload. The attack can be initiated remotely. The exploit has been...

5.8CVSS0.00253EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/13 1:32 a.m.3 views

CVE-2025-11655 Total.js Flow SVG File unrestricted upload

A security flaw has been discovered in Total.js Flow up to 673ef9144dd25d4f4fd4fdfda5af27f230198924. The impacted element is an unknown function of the component SVG File Handler. Performing manipulation results in unrestricted upload. The attack can be initiated remotely. The exploit has been...

5.8CVSS6.3AI score0.00253EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/13 12:0 a.m.5 views

PT-2025-41744

Name of the Vulnerable Software and Affected Versions Total.js Flow versions prior to 673ef9144dd25d4f4fd4fdfda5af27f230198924 Description A security flaw exists in Total.js Flow related to the SVG File Handler component. Manipulation of this component can lead to unrestricted file upload, and th...

5.8CVSS4.7AI score0.00253EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/10/13 12:0 a.m.4 views

Total.js Flow 代码问题漏洞

Total.js Flow is an open source visualization into a tool by Total.js Platform. A code issue vulnerability exists in Total.js Flow, which stems from an unrestricted upload feature in the SVG File Handler component, which could lead to a remote attack...

5.8CVSS5.2AI score0.00253EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-31372

Malicious code in bioql PyPI...

4.8CVSS4AI score0.0026EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-31011

Malicious code in bioql PyPI...

4.8CVSS3.9AI score0.00288EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-34137

Malicious code in bioql PyPI...

6.1CVSS4.8AI score0.0053EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-10896

Malicious code in bioql PyPI...

5.4CVSS4.6AI score0.00326EPSS
Exploits2References6
RedhatCVE
RedhatCVE
added 2025/09/27 4:46 p.m.7 views

CVE-2025-11027

A vulnerability was identified in givanz Vvveb up to 1.0.7.2. Affected by this issue is some unknown functionality of the component SVG File Handler. Such manipulation leads to cross site scripting. The attack may be launched remotely. The exploit is publicly available and might be used. Once aga...

4.8CVSS6.1AI score0.0026EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/09/26 4:2 p.m.13 views

CVE-2025-11027 givanz Vvveb SVG File cross site scripting

A vulnerability was identified in givanz Vvveb up to 1.0.7.2. Affected by this issue is some unknown functionality of the component SVG File Handler. Such manipulation leads to cross site scripting. The attack may be launched remotely. The exploit is publicly available and might be used. Once aga...

4.8CVSS0.0026EPSS
Exploits1References4
Rows per page
Query Builder