Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-23519

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. Prior to version 1.4.4, a possible XSS vulnerability with certain...

7.2CVSS6.7AI score0.00988EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.4 views

PT-2024-30846 · Geek Code · Geek Code Lab Login As Users

Name of the Vulnerable Software and Affected Versions: Geek Code Lab Login As Users versions 1.4.3 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. This can lead to unauthorized...

8.8CVSS7AI score0.00435EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:28 a.m.3 views

SUSE CVE-2022-23519

rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. Prior to version 1.4.4, a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer may allow an attacker to inject content if the application developer has overridden the sanitizer's...

7.2CVSS6AI score0.00988EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:28 a.m.4 views

SUSE CVE-2022-23520

rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. Prior to version 1.4.4, there is a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer due to an incomplete fix of CVE-2022-32209. Rails::Html::Sanitizer may allow an attacker to...

6.1CVSS6.1AI score0.0111EPSS
Exploits1References6
Snyk
Snyk
added 2022/05/17 2:34 a.m.2 views

Out-of-Bounds

Overview Microsoft.ChakraCore is a core part of the Chakra Javascript engine that powers Microsoft Edge Affected versions of this package are vulnerable to Out-of-Bounds which can lead to remote code execution. This issue derives from the way JavaScript engines render when handling objects in...

8.6CVSS7.4AI score0.38115EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2021/06/22 12:0 a.m.11 views

PT-2021-19865 · Unknown · Pterodactyl Wings

Name of the Vulnerable Software and Affected Versions: Pterodactyl Wings versions prior to 1.4.4 Description: The issue concerns system resource exhaustion due to improper container process limits being defined. A malicious user can consume more resources than intended, causing downstream impacts...

6.5CVSS7AI score0.00267EPSS
Exploits0References10
Rows per page
Query Builder