Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2025/12/01 8:26 p.m.6 views

CVE-2025-66420

Tryton sao aka tryton-sao before 7.6.9 allows XSS via an HTML attachment. This is fixed in 7.6.9, 7.4.19, 7.0.38, and 6.0.67...

5.4CVSS5.9AI score0.00144EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/30 3:30 a.m.6 views

EUVD-2025-199921

Tryton sao aka tryton-sao before 7.6.9 allows XSS via an HTML attachment. This is fixed in 7.6.9, 7.4.19, 7.0.38, and 6.0.67...

5.4CVSS5.5AI score0.00144EPSS
Exploits0References3
NVD
NVD
added 2025/11/30 3:15 a.m.8 views

CVE-2025-66420

Tryton sao aka tryton-sao before 7.6.9 allows XSS via an HTML attachment. This is fixed in 7.6.9, 7.4.19, 7.0.38, and 6.0.67...

5.4CVSS0.00144EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/30 12:0 a.m.5 views

Tryton sao 跨站脚本漏洞

Tryton sao is a web client for Tryton's open source Universal Application Platform. A cross-site scripting vulnerability exists in Tryton sao versions prior to 7.6.9, which stems from an HTML attachment that could lead to a cross-site scripting attack...

5.4CVSS5.7AI score0.00144EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/30 12:0 a.m.9 views

CVE-2025-66420

Tryton sao aka tryton-sao before 7.6.9 allows XSS via an HTML attachment. This is fixed in 7.6.9, 7.4.19, 7.0.38, and 6.0.67...

5.4CVSS0.00144EPSS
Exploits0References2
NVD
NVD
added 2025/09/24 1:15 p.m.9 views

CVE-2025-9353

The Themify Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in all versions up to, and including, 7.6.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access an...

6.4CVSS0.00304EPSS
Exploits0References7
Circl
Circl
added 2025/09/09 10:0 a.m.4 views

CVE-2025-7679

creationtimestamp| type| source ---|---|--- 2025-09-09 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-252-02...

9.2CVSS4.8AI score0.00443EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/05/23 2:15 a.m.3 views

CVE-2023-27922

Cross-site scripting vulnerability in Newsletter versions prior to 7.6.9 allows a remote unauthenticated attacker to inject an arbitrary script...

6.1CVSS6.5AI score0.01198EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2023/05/23 12:0 a.m.7 views

WordPress plugin Newsletter 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

6.1CVSS6.2AI score0.01198EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/04/11 7:13 p.m.16 views

CVE-2023-21769 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

...

7.5CVSS7.6AI score0.91524EPSS
Exploits0References1
CNVD
CNVD
added 2018/12/04 12:0 a.m.6 views

Pulse Secure Desktop Client for Windows Arbitrary File Write Vulnerability

Pulse Secure Desktop Client for Windows is a suite of Windows-based client software from Pulse Secure, Inc. for end devices that access Juniper Pulse Secure gateways. A security vulnerability exists in Pulse Secure Desktop Client versions 5.3 through R6.0 build 1769 for Windows-based platforms. T...

5.8CVSS7AI score0.00902EPSS
Exploits1References1
OSV
OSV
added 2018/10/23 1:29 p.m.3 views

CVE-2018-13400

Several administrative resources in Atlassian Jira before version 7.6.9, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3, from version 7.10.0 before version 7.10.3, from version 7.11.0 before version 7.11.3, from version...

4.7CVSS5.8AI score0.01436EPSS
Exploits0References2
Rows per page
Query Builder