Lucene search
K

866 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-40803

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00494EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-49684

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00341EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.15 views

EUVD-2022-4121

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00816EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2023-1264

Malicious code in bioql PyPI...

9CVSS8.8AI score0.01393EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-5440

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00947EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-3521

Malicious code in bioql PyPI...

4.3CVSS6.3AI score0.01962EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-2272

Malicious code in bioql PyPI...

4.8CVSS6.4AI score0.00361EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-34456

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00265EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10903

Malicious code in bioql PyPI...

8.7CVSS6.5AI score0.00416EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-18513

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00231EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-49685

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00385EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/08 12:0 a.m.4 views

Vite 访问控制错误漏洞

Vite is a new front-end build tool from Vite Open Source. An access control error vulnerability exists in Vite versions prior to 7.1.5, prior to 7.0.7, prior to 6.3.6, and prior to 5.4.20, which stems from explicitly exposing the Vite development server to the network resulting in arbitrary HTML...

5.3CVSS6.4AI score0.00586EPSS
Exploits1References6
NVD
NVD
added 2025/07/14 11:15 p.m.8 views

CVE-2025-53835

XWiki Rendering is a generic rendering system that converts textual input in a given syntax wiki syntax, HTML, etc into another syntax XHTML, etc. Starting in version 5.4.5 and prior to version 14.10, the XHTML syntax depended on the xdom+xml/current syntax which allows the creation of raw blocks...

9CVSS0.00325EPSS
Exploits0References3
OSV
OSV
added 2025/07/03 9:38 p.m.5 views

GHSA-P85Q-MWW9-GWQF Citizen Short Description stored XSS vulnerability through wikitext

Summary Short descriptions are not properly sanitized by the ShortDescription before being inserted as HTML using mw.util.addSubtitle, allowing any user to insert arbitrary HTML into the DOM by editing a page. Details The description provided by the user via the SHORTDESC: parser function is...

8.6CVSS6.1AI score0.00289EPSS
Exploits0References4
OSV
OSV
added 2025/07/03 9:29 p.m.2 views

GHSA-PRMV-7R8C-794G Citizen vulnerable to Stored XSS through short descriptions

Summary Short descriptions set via the ShortDescription extension are inserted as raw HTML by the Citizen skin, allowing any user to insert arbitrary HTML into the DOM by editing a page. Details The shortdesc property, which contains unsanitized user input, is retrieved from the OutputPage and...

8.6CVSS6.1AI score0.003EPSS
Exploits1References6
NVD
NVD
added 2025/07/03 8:15 p.m.4 views

CVE-2025-53370

Citizen is a MediaWiki skin that makes extensions part of the cohesive experience. From versions 1.9.4 to before 3.4.0, short descriptions set via the ShortDescription extension are inserted as raw HTML by the Citizen skin, allowing any user to insert arbitrary HTML into the DOM by editing a page...

8.6CVSS0.003EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/07/03 7:45 p.m.13 views

CVE-2025-53370 Citizen stored XSS vulnerability through short descriptions

Citizen is a MediaWiki skin that makes extensions part of the cohesive experience. From versions 1.9.4 to before 3.4.0, short descriptions set via the ShortDescription extension are inserted as raw HTML by the Citizen skin, allowing any user to insert arbitrary HTML into the DOM by editing a page...

8.6CVSS0.003EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/07/01 2:56 a.m.4 views

CVE-2025-5967

A stored cross-site scripting vulnerability in ENS HX 10.0.4 allows a malicious user to inject arbitrary HTML into the ENS HX Malware Scan Name field, resulting in the exposure of sensitive data...

5.3CVSS6AI score0.0016EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/29 6:5 p.m.17 views

CVE-2025-53093

TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Starting in version 3.0.0 and prior to version 3.1.1, any user can insert arbitrary HTMLinto the DOM by inserting a payload into any allowed attribute of the tag. Version 3.1.1 contains a patch for the bug...

8.6CVSS7.2AI score0.00354EPSS
Exploits0References1
OSV
OSV
added 2025/06/27 5:43 p.m.8 views

CVE-2025-53093 TabberNeue vulnerable to Stored XSS through wikitext

TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Starting in version 3.0.0 and prior to version 3.1.1, any user can insert arbitrary HTMLinto the DOM by inserting a payload into any allowed attribute of the tag. Version 3.1.1 contains a patch for the bug...

8.6CVSS6.6AI score0.00354EPSS
Exploits0References8
Rows per page
Query Builder