Lucene search
+L

57 matches found

Vulnrichment
Vulnrichment
added 3 hours ago3 views

CVE-2026-48015 Shopware: Stored XSS via SVG file upload — no SVG sanitization

Shopware is an open commerce platform. Prior to 6.6.10.18 and 6.7.10.1, SVG files are in the allowedextensions whitelist in src/Core/Framework/Resources/config/packages/shopware.yaml and can be uploaded via the media manager without SVG content sanitization in the upload pipeline from...

4.9CVSS5.5AI score0.00039EPSS
Exploits0References5
CVE
CVE
added 3 hours ago21 views

CVE-2026-48015

Shopware core is affected by CVE-2026-48015 due to SVG files being allowed in the media upload whitelist and not sanitized in the upload pipeline (MediaUploadController → FileSaver → TypeDetector). Prior to versions 6.6.10.18 and 6.7.10.1, uploading SVGs could allow embedded JavaScript (onload, [...

4.9CVSS5.4AI score0.00039EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/07/09 10:2 p.m.33 views

CVE-2026-53962 Discourse: Insufficient SVG sanitization logic

Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, insufficient SVG sanitization in upload and user avatar handling could lead to cross-site scripting when a user visited specific URLs that are not normally part of community browsing. This issue ...

5.4CVSS0.0027EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/07/09 10:2 p.m.6 views

CVE-2026-53962

Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, insufficient SVG sanitization in upload and user avatar handling could lead to cross-site scripting when a user visited specific URLs that are not normally part of community browsing. This issue ...

5.4CVSS5.8AI score0.0027EPSS
Exploits0References10Affected Software1
CVE
CVE
added 2026/07/09 10:2 p.m.7 views

CVE-2026-53962

Discourse (open‑source discussion platform) has an XSS vulnerability due to insufficient SVG sanitization in upload and avatar handling. Affected in versions prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5. The issue could be triggered by visiting specific URLs outside normal navigation; CVSS...

5.4CVSS5.8AI score0.0027EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.24 views

PT-2026-51122

Name of the Vulnerable Software and Affected Versions Symfony UX Icons affected versions not specified Description The ux icon Twig function is marked as safe for HTML, which prevents Twig from escaping its output. The Icon::toHtml function inlines SVG source code directly into the page. Because...

6.1CVSS5.5AI score0.00194EPSS
Exploits0References15
Snyk
Snyk
added 2026/05/28 4:50 p.m.12 views

Cross-site Scripting (XSS)

Overview tinymce/tinymce is a web-based JavaScript HTML WYSIWYG editor control. Affected versions of this package are vulnerable to Cross-site Scripting XSS via improper handling of SVG namespace scope by the sanitizer. An attacker can execute arbitrary JavaScript by crafting a payload with neste...

8.7CVSS5.8AI score0.00191EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/15 6:36 p.m.7 views

CVE-2026-46360

phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in SvgSanitizer::decodeAllEntities that limits recursive entity decoding to 5 iterations, allowing attackers to bypass sanitization. Authenticated users with FAQEDIT permission can upload malicious SVG files with deeply...

5.4CVSS5.9AI score0.00153EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/28 12:0 a.m.43 views

CVE-2026-38948

Cross-Site Scripting XSS vulnerability exists in FUEL CMS v1.5.2 and before within the asset upload functionality. The application fails to properly sanitize uploaded SVG files, allowing a low-privileged authenticated user to upload a crafted SVG file containing malicious code...

0.00165EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/28 12:0 a.m.5 views

EUVD-2026-26063

Cross-Site Scripting XSS vulnerability exists in FUEL CMS v1.5.2 and before within the asset upload functionality. The application fails to properly sanitize uploaded SVG files, allowing a low-privileged authenticated user to upload a crafted SVG file containing malicious code...

5.4CVSS5.2AI score0.00165EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/16 7:22 p.m.11 views

CVE-2026-25133

October is a Content Management System CMS and web platform. Versions prior to 3.7.14 and 4.1.10 contain a stored cross-site scripting XSS vulnerability in the SVG sanitization logic. The regex pattern used to strip event handler attributes such as onclick or onload could be bypassed using a...

4.8CVSS5.6AI score0.00217EPSS
Exploits0References1
NVD
NVD
added 2026/04/14 9:16 p.m.6 views

CVE-2026-25133

October is a Content Management System CMS and web platform. Versions prior to 3.7.14 and 4.1.10 contain a stored cross-site scripting XSS vulnerability in the SVG sanitization logic. The regex pattern used to strip event handler attributes such as onclick or onload could be bypassed using a...

4.8CVSS0.00217EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/14 8:47 p.m.7 views

CVE-2026-25133 October CMS has Stored XSS via SVG Filter Bypass

October is a Content Management System CMS and web platform. Versions prior to 3.7.14 and 4.1.10 contain a stored cross-site scripting XSS vulnerability in the SVG sanitization logic. The regex pattern used to strip event handler attributes such as onclick or onload could be bypassed using a...

4.8CVSS5.6AI score0.00217EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/14 8:47 p.m.31 views

CVE-2026-25133 October CMS has Stored XSS via SVG Filter Bypass

October is a Content Management System CMS and web platform. Versions prior to 3.7.14 and 4.1.10 contain a stored cross-site scripting XSS vulnerability in the SVG sanitization logic. The regex pattern used to strip event handler attributes such as onclick or onload could be bypassed using a...

4.8CVSS0.00217EPSS
Exploits0References1
OSV
OSV
added 2026/04/14 8:47 p.m.4 views

CVE-2026-25133 October CMS has Stored XSS via SVG Filter Bypass

October is a Content Management System CMS and web platform. Versions prior to 3.7.14 and 4.1.10 contain a stored cross-site scripting XSS vulnerability in the SVG sanitization logic. The regex pattern used to strip event handler attributes such as onclick or onload could be bypassed using a...

4.8CVSS5.8AI score0.00217EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.9 views

PT-2026-32912

A stored cross-site scripting XSS vulnerability was identified in the SVG sanitization logic. The regex pattern used to strip on event handler attributes could be bypassed using a crafted payload that exploits how the pattern matches attribute boundaries. Impact - Stored XSS via malicious SVG fil...

5.3CVSS5.6AI score0.00217EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/01 11:0 p.m.10 views

CVE-2026-34605

SiYuan is a personal knowledge management system. From version 3.6.0 to before version 3.6.2, the SanitizeSVG function introduced in version 3.6.0 to fix XSS in the unauthenticated /api/icon/getDynamicIcon endpoint can be bypassed by using namespace-prefixed element names such as . The Go HTML5...

8.6CVSS5.7AI score0.00469EPSS
Exploits1References1
CVE
CVE
added 2026/03/20 9:40 p.m.16 views

CVE-2026-33172

CVE-2026-33172 covers a stored XSS in Statamic CMS via SVG asset reuploads. Prior to versions 5.73.14 and 6.7.0, authenticated users with asset upload permissions could bypass SVG sanitization and inject JavaScript that executes when the asset is viewed. The issue has been fixed in 5.73.14 and 6....

8.7CVSS5.7AI score0.00325EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/03/18 7:54 p.m.5 views

GHSA-7RCV-55MJ-CHG7 Statamic has Stored XSS via SVG Sanitization Bypass

Impact Stored XSS vulnerability in SVG asset reuploads allows authenticated users with asset upload permissions to bypass SVG sanitization and inject malicious JavaScript that executes when the asset is viewed. Patches This has been fixed in 5.73.14 and 6.7.0...

8.7CVSS5.7AI score0.00325EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/10 11:49 p.m.7 views

EUVD-2026-10892

SiYuan has a SVG Sanitizer Bypass via Element — Unauthenticated XSS...

6.4CVSS5.8AI score0.00445EPSS
Exploits1References3
Rows per page
Query Builder