Lucene search
K

4 matches found

CNNVD
CNNVD
added 2025/12/19 12:0 a.m.4 views

Orejime 跨站脚本漏洞

Orejime is an open source user consent management tool from Boscop. A cross-site scripting vulnerability exists in Orejime versions prior to 2.3.2, which stems from embedded javascript code in the data attribute and could lead to the execution of malicious code...

6.1CVSS6.1AI score0.00183EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/03/21 12:0 a.m.7 views

PT-2023-7467 · Apache · Apache Airflow Drill Provider

Name of the Vulnerable Software and Affected Versions: Apache Airflow Drill Provider versions prior to 2.3.2 Description: The issue is related to improper input validation in the Apache Airflow Drill Provider. This can allow a remote attacker to impact the confidentiality of protected information...

8.7CVSS7.2AI score0.02062EPSS
Exploits0References17
CNNVD
CNNVD
added 2021/08/24 12:0 a.m.6 views

joplin 跨站请求伪造漏洞

Joplin is an open source notes and to-do list application. A security vulnerability exists in versions of joplin prior to 2.3.2 that stems from the application's lack of various forms of CSRF checking, leaving it vulnerable to cross-site request forgery attacks...

8.8CVSS7.6AI score0.00403EPSS
Exploits0References2
CNVD
CNVD
added 2019/07/03 12:0 a.m.3 views

Magento Input Validation Error Vulnerability (CNVD-2019-39390)

Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions. A security vulnerability exists in Magento version 2.1 before 2.1.18, version 2.2 before 2.2.9, and version 2.3...

7.5CVSS7AI score0.02044EPSS
Exploits0References1
Rows per page
Query Builder