Lucene search
K

880 matches found

RedhatCVE
RedhatCVE
added 2025/11/08 12:55 a.m.18 views

CVE-2025-63785

A DOM-based Cross-Site Scripting XSS vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerability occurs because user-supplied input is not properly sanitized before being directly injected into the DOM via innerHTML when editing a text element. An...

6.1CVSS6AI score0.0026EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/07 6:30 p.m.6 views

EUVD-2025-38263

A DOM-based Cross-Site Scripting XSS vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerability occurs because user-supplied input is not properly sanitized before being directly injected into the DOM via innerHTML when editing a text element. An...

5.5AI score0.0026EPSS
Exploits1References3
OSV
OSV
added 2025/11/07 5:15 p.m.6 views

CVE-2025-63785

A DOM-based Cross-Site Scripting XSS vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerability occurs because user-supplied input is not properly sanitized before being directly injected into the DOM via innerHTML when editing a text element. An...

6.1CVSS6AI score0.0026EPSS
Exploits1References2
NVD
NVD
added 2025/11/07 5:15 p.m.13 views

CVE-2025-63785

A DOM-based Cross-Site Scripting XSS vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerability occurs because user-supplied input is not properly sanitized before being directly injected into the DOM via innerHTML when editing a text element. An...

6.1CVSS0.0026EPSS
Exploits1References2
CVE
CVE
added 2025/11/07 12:0 a.m.21 views

CVE-2025-63785

CVE-2025-63785 affects the Onlook web application (version 0.2.32) in its text editor feature. The root cause is unsafe handling of user input: input is not sanitized before being injected into the DOM via innerHTML when editing a text element, enabling a DOM-based XSS attack. Exploitation would ...

6.1CVSS5.7AI score0.0026EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/07 12:0 a.m.3 views

CVE-2025-63785

A DOM-based Cross-Site Scripting XSS vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerability occurs because user-supplied input is not properly sanitized before being directly injected into the DOM via innerHTML when editing a text element. An...

5.6AI score0.0026EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/11/07 12:0 a.m.5 views

Onlook 安全漏洞

Onlook is a source code visual editing tool from the Onlook open source. A security vulnerability exists in Onlook version 0.2.32, which stems from a text editor feature that does not properly clean up user input and could lead to a cross-site scripting attack...

6.1CVSS6.2AI score0.0026EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/10/22 8:18 p.m.5 views

CVE-2025-53048

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Rich Text Editor. Supported versions that are affected are 8.60, 8.61 and 8.62. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft...

5.4CVSS5.2AI score0.00202EPSS
Exploits0References1
OSV
OSV
added 2025/10/21 8:20 p.m.4 views

CVE-2025-53048

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Rich Text Editor. Supported versions that are affected are 8.60, 8.61 and 8.62. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft...

5.4CVSS5.8AI score0.00202EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/21 8:2 p.m.5 views

EUVD-2025-35286

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Rich Text Editor. Supported versions that are affected are 8.60, 8.61 and 8.62. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft...

5.4CVSS4.8AI score0.00202EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/21 12:0 a.m.5 views

Oracle PeopleSoft 安全漏洞

Oracle PeopleSoft is a suite of enterprise human capital management solutions from Oracle Corporation USA. The product provides human capital management, financial management, supplier relationship management, and other capabilities.PeopleSoft Enterprise PeopleTools is one of the tools and...

5.4CVSS7AI score0.00202EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-14987

Malware in sbrugna...

6.1CVSS6.7AI score0.01563EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-14627

Malware in sbrugna...

8.8CVSS8.8AI score0.02347EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-7118

Malware in sbrugna...

5.4CVSS5.6AI score0.00578EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-4449

Malware in sbrugna...

5.4CVSS5.8AI score0.00849EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-1007

Malware in sbrugna...

4.3CVSS6.1AI score0.02441EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2016-0733

Malware in sbrugna...

5.4CVSS5.8AI score0.01047EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-3170

Malware in sbrugna...

3.5CVSS6.4AI score0.00789EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-3354

Malware in sbrugna...

4.3CVSS6.4AI score0.01272EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-3701

Malware in sbrugna...

4.3CVSS6.4AI score0.01248EPSS
Exploits0References7
Rows per page
Query Builder