2 matches found
CVE-2026-13234
CVE-2026-13234 concerns an XSS flaw in the Drupal AI module. The vulnerability arises from improper neutralization of input during web page generation, enabling Cross-Site Scripting. Affected versions are: 0.0.0–1.2.17, 1.3.0–1.3.8, and 1.4.0–1.4.3. The issue is documented across NVD, CVE listing...
PT-2021-24041 · Isync +2 · Isync +2
Name of the Vulnerable Software and Affected Versions: isync versions 1.4.0 through 1.4.3 Description: A flaw was found in mbsync due to an unchecked condition, allowing a malicious or compromised IMAP server to use a crafted mail message that lacks headers to provoke a heap overflow, which could...