Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-0791

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.01445EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:44 a.m.8 views

CVE-2023-22849

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.4 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in multiple features. Upgrade to Apache Sling App C...

6.1CVSS5.8AI score0.01445EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:49 a.m.14 views

CVE-2022-46769

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.2 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in the site group feature. Upgrade to Apache Sling...

5.4CVSS5.7AI score0.01382EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2023/02/04 9:30 p.m.19 views

Sling App CMS Cross-site Scripting vulnerability

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.4 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in multiple features. Upgrade to Apache Sling App C...

6.1CVSS5.6AI score0.01445EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/02/04 9:30 p.m.19 views

GHSA-RGHH-GHF7-7943 Sling App CMS Cross-site Scripting vulnerability

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.4 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in multiple features. Upgrade to Apache Sling App C...

6.1CVSS5.9AI score0.01445EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/02/04 8:37 p.m.14 views

CVE-2023-22849 Apache Sling App CMS: XSS in CMS Reference / UI Components

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.4 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in multiple features. Upgrade to Apache Sling App C...

6.1AI score0.01445EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/04 8:37 p.m.6 views

CVE-2023-22849 Apache Sling App CMS: XSS in CMS Reference / UI Components

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.4 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in multiple features. Upgrade to Apache Sling App C...

6.1AI score0.01445EPSS
Exploits0References1
OSV
OSV
added 2023/01/09 12:30 p.m.79 views

GHSA-38M2-VR6G-8C94 Apache Sling App CMS vulnerable to reflected Cross-site Scripting

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.2 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in the site group feature. Upgrade to Apache Sling...

5.4CVSS5.1AI score0.01382EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/01/09 10:14 a.m.8 views

CVE-2022-46769 Apache Sling App CMS: XSS in CMS Site Group Detail

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.2 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in the site group feature. Upgrade to Apache Sling...

5.3AI score0.01382EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/09 10:14 a.m.44 views

CVE-2022-46769 Apache Sling App CMS: XSS in CMS Site Group Detail

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.2 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in the site group feature. Upgrade to Apache Sling...

5.5AI score0.01382EPSS
Exploits0References1
OSV
OSV
added 2023/01/09 10:14 a.m.21 views

CVE-2022-46769 Apache Sling App CMS: XSS in CMS Site Group Detail

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.2 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in the site group feature. Upgrade to Apache Sling...

5.4CVSS6AI score0.01382EPSS
Exploits0References3
Rows per page
Query Builder