Lucene search
K

5 matches found

CVE
CVE
added yesterday14 views

CVE-2026-45066

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. From 6.1.0-BETA1 until 6.4.40, 7.4.12, and 8.0.12, HtmlSanitizer URL sanitization can allow off-allowlist URLs through allowLinkHosts or allowMediaHosts because UrlSanitizer::parse follows RFC 3986...

6.1CVSS6.1AI score0.00048EPSS
Exploits0References5Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.4 views

SUSE CVE-2016-4552

Cross-site scripting XSS vulnerability in Roundcube Webmail before 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the href attribute in an area tag in an e-mail message...

6.1CVSS6AI score0.01372EPSS
Exploits1References4
OSV
OSV
added 2016/12/20 10:59 p.m.7 views

UBUNTU-CVE-2016-4552

Cross-site scripting XSS vulnerability in Roundcube Webmail before 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the href attribute in an area tag in an e-mail message...

6.1CVSS6.5AI score0.01372EPSS
Exploits1References4
OSV
OSV
added 2016/12/20 10:59 p.m.6 views

DEBIAN-CVE-2016-4552

Cross-site scripting XSS vulnerability in Roundcube Webmail before 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the href attribute in an area tag in an e-mail message...

6.1CVSS6AI score0.01372EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2016/05/06 12:0 a.m.38 views

roundcube -- XSS vulnerability

Roundcube reports: Fix XSS issue in href attribute on area tag 5240...

1.5AI score
Exploits0References2
Rows per page
Query Builder