Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2022-2424

Malicious code in bioql PyPI...

6.1CVSS5.9AI score0.01817EPSS
Exploits1References9
Github Security Blog
Github Security Blogadded 2022/05/13 1:2 a.m.14 views

Cross-site Scripting in Apache DeltaSpike

The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters by default, so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1...

6.1CVSS6.2AI score0.01817EPSS
Exploits1References7Affected Software1
OSV
OSVadded 2022/05/13 1:2 a.m.14 views

GHSA-4Q23-G7MF-XP98 Cross-site Scripting in Apache DeltaSpike

The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters by default, so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1...

6.1CVSS6.1AI score0.01817EPSS
Exploits1References6
RedhatCVE
RedhatCVEadded 2018/01/08 4:23 a.m.28 views

CVE-2017-17837

The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters by default, so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1...

6.1CVSS3.2AI score0.01817EPSS
Exploits1References1
Veracode
Veracodeadded 2018/01/05 8:28 a.m.15 views

Cross-site Scripting (XSS)

Apache Deltaspike is vulnerable to cross-site scripting XSS. The application does not properly escape the windowId variable, allowing a malicious user to inject and execute arbitrary Javascript. The impact is limited because the size of the variable is cut off after 10 characters...

6.1CVSS6.2AI score0.01817EPSS
Exploits1References7Affected Software2
Prion
Prionadded 2018/01/04 3:29 p.m.10 views

Cross site scripting

The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters by default, so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1...

4.3CVSS6.1AI score0.01817EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2018/01/04 3:29 p.m.14 views

CVE-2017-17837

The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters by default, so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1...

6.1CVSS6.2AI score0.01817EPSS
Exploits1References4
OSV
OSVadded 2018/01/04 3:29 p.m.7 views

CVE-2017-17837

The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters by default, so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1...

6.1CVSS6.4AI score
Exploits0References4
CVE
CVEadded 2018/01/04 3:0 p.m.81 views

CVE-2017-17837

CVE-2017-17837 affects the Apache DeltaSpike-JSF 1.8.0 module with a Cross‑Site Scripting (XSS) leak in how windowId is handled. The windowId is truncated after 10 characters by default, which can limit impact but still constitutes an XSS risk. A fix was released in Apache DeltaSpike 1.8.1 (delta...

6.1CVSS6.1AI score0.01817EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder