Lucene search
K

12 matches found

Positive Technologies
Positive Technologies
added 2025/09/10 12:0 a.m.5 views

PT-2025-37081

Name of the Vulnerable Software and Affected Versions: Decap CMS versions through 3.8.3 Description: A Cross Site Scripting XSS vulnerability exists in Decap CMS. Input fields, including body, tags, title, and description, are not properly sanitized before being rendered in the content preview...

6.1CVSS5.6AI score0.00297EPSS
Exploits2References7
Rockylinux
Rockylinux
added 2024/03/27 4:34 a.m.36 views

thunderbird security update

An update is available for thunderbird. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Thunderbird is a standalone mail and newsgroup client. This updat...

8.8CVSS8.3AI score0.01285EPSS
Exploits5
RedHat Linux
RedHat Linux
added 2024/03/25 8:29 p.m.3 views

Mozilla: Improper handling of html and body tags enabled CSP nonce leakage

The Mozilla Foundation Security Advisory describes this flaw as: Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass strict content security policies...

6.1CVSS7.3AI score0.00704EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 8:16 p.m.4 views

Mozilla: Improper handling of html and body tags enabled CSP nonce leakage

The Mozilla Foundation Security Advisory describes this flaw as: Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass strict content security policies...

6.1CVSS7.3AI score0.00704EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 8:11 p.m.5 views

Mozilla: Improper handling of html and body tags enabled CSP nonce leakage

The Mozilla Foundation Security Advisory describes this flaw as: Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass strict content security policies...

6.1CVSS7.3AI score0.00704EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 8:10 p.m.5 views

Mozilla: Improper handling of html and body tags enabled CSP nonce leakage

The Mozilla Foundation Security Advisory describes this flaw as: Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass strict content security policies...

6.1CVSS7.3AI score0.00704EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 8:8 p.m.5 views

Mozilla: Improper handling of html and body tags enabled CSP nonce leakage

The Mozilla Foundation Security Advisory describes this flaw as: Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass strict content security policies...

6.1CVSS7.3AI score0.00704EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 7:39 p.m.5 views

Mozilla: Improper handling of html and body tags enabled CSP nonce leakage

The Mozilla Foundation Security Advisory describes this flaw as: Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass strict content security policies...

6.1CVSS7.3AI score0.00704EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/03/25 7:36 p.m.6 views

Mozilla: Improper handling of html and body tags enabled CSP nonce leakage

The Mozilla Foundation Security Advisory describes this flaw as: Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass strict content security policies...

6.1CVSS7.3AI score0.00704EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2024/03/25 12:0 a.m.29 views

Mozilla Firefox ESR Security Update (MFSA2024-13) - Windows

Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...

8.8CVSS7.4AI score0.01285EPSS
Exploits3References1
OSV
OSV
added 2024/03/20 5:48 a.m.4 views

USN-6703-1 firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. CVE-2024-2609, CVE-2024-2611,...

9.8CVSS7.7AI score0.01107EPSS
Exploits6References12
Prion
Prion
added 2006/02/15 11:6 a.m.10 views

Cross site scripting

Unspecified vulnerability in index.php in imageVue 16.1 has unknown impact, probably a cross-site scripting XSS vulnerability involving the query string that is not quoted when inserted into style and body tags, as demonstrated using a bgcol parameter...

4.3CVSS5.9AI score0.04398EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder