Lucene search
K

6 matches found

OSV
OSV
added 2025/04/23 5:7 p.m.4 views

CVE-2025-3901 Bootstrap Site Alert - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-042

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Bootstrap Site Alert allows Cross-Site Scripting XSS.This issue affects Bootstrap Site Alert: from 0.0.0 before 1.13.0, from 3.0.0 before 3.0.4...

6.1CVSS5.9AI score0.00198EPSS
Exploits0References5
OSV
OSV
added 2025/04/14 2:15 p.m.4 views

AZL-60429 CVE-2025-32907 affecting package libsoup for versions less than 3.0.4-7

A flaw was found in libsoup. The implementation of HTTP range requests is vulnerable to a resource consumption attack. This flaw allows a malicious client to request the same range many times in a single HTTP request, causing the server to use large amounts of memory. This does not allow for a fu...

5.3CVSS7.2AI score0.00605EPSS
Exploits0References1
OSV
OSV
added 2024/10/09 2:15 p.m.4 views

CVE-2024-45144

Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.4AI score0.00269EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/01/10 12:0 a.m.6 views

Phoenix.HTML 跨站脚本漏洞

Phoenix.HTML is Phoenix framework open source a function . Used to handle HTML strings and templates. A security vulnerability exists in Phoenix.HTML versions prior to 3.0.4. Attackers use this vulnerability to execute cross-site scripting attacks...

6.1CVSS6AI score0.00415EPSS
Exploits0References3
OSV
OSV
added 2022/06/10 11:3 a.m.6 views

OESA-2022-1700 ruby security update

Ruby is a fast and easy interpreted scripting language for object-oriented programming. It has many functions for processing text Files and perform system management tasks such as Perl. Security Fixes: There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and...

9.8CVSS6.8AI score0.04127EPSS
Exploits0References3
CNVD
CNVD
added 2020/08/06 12:0 a.m.1 views

Cisco Cyber Vision Center Software Access Control Error Vulnerability

Cisco Cyber Vision Center Software is a set of industrial control system ICS monitoring solution from the U.S. company Cisco Cisco. The product supports dynamic asset inventory, real-time network monitoring and other functions. An access control error vulnerability exists in the access control...

5.8CVSS6.7AI score0.0111EPSS
Exploits0References1
Rows per page
Query Builder