Lucene search
K

2352 matches found

CVE
CVE
added 2025/03/07 12:0 a.m.62 views

CVE-2025-27825

CVE-2025-27825 affects Backdrop CMS using the Bootstrap 5 Lite theme prior to 1.x-1.0.3. Root cause: insufficient sanitization of certain class names in the theme, enabling an XSS vulnerability. Public exploitation details are not provided in the connected documents. No remediation details are ex...

6.4CVSS6.3AI score0.00213EPSS
Exploits0References1
CVE
CVE
added 2025/03/07 12:0 a.m.61 views

CVE-2025-27826

CVE-2025-27826 affects Backdrop CMS via the Bootstrap Lite theme (before 1.x-1.4.5). The underlying issue is insufficient sanitization of certain class names, enabling cross-site scripting (XSS). The citation shows a CVSS v3.1 base score of 6.4 (Medium) with network attack vector and low privileg...

6.4CVSS6.3AI score0.00213EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/07 12:0 a.m.11 views

CVE-2025-27826

An XSS issue was discovered in the Bootstrap Lite theme before 1.x-1.4.5 for Backdrop CMS. It doesn't sufficiently sanitize certain class names...

6.4CVSS0.00213EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/07 12:0 a.m.6 views

CVE-2025-27825

An XSS issue was discovered in the Bootstrap 5 Lite theme before 1.x-1.0.3 for Backdrop CMS. It doesn't sufficiently sanitize certain class names...

6.4CVSS6.3AI score0.00213EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/07 12:0 a.m.4 views

CVE-2025-27826

An XSS issue was discovered in the Bootstrap Lite theme before 1.x-1.4.5 for Backdrop CMS. It doesn't sufficiently sanitize certain class names...

6.4CVSS6.3AI score0.00213EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-6485

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting XSS attacks. The vulnerability is associated with the...

6.4CVSS6.8AI score0.00494EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2016-10735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041...

6.1CVSS6.6AI score0.04293EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2019-8331

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute. CVE-2019-8331 Note that Nessus relies on th...

6.1CVSS6.9AI score0.1686EPSS
Exploits1References3
CBLMariner
CBLMariner
added 2025/03/03 10:12 p.m.10 views

CVE-2021-36374 affecting package javapackages-bootstrap for versions less than 1.5.0-6

CVE-2021-36374 affecting package javapackages-bootstrap for versions less than 1.5.0-6. A patched version of the package is available...

5.5CVSS7.2AI score0.0262EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/03/03 10:12 p.m.9 views

CVE-2021-36373 affecting package javapackages-bootstrap for versions less than 1.5.0-6

CVE-2021-36373 affecting package javapackages-bootstrap for versions less than 1.5.0-6. A patched version of the package is available...

5.5CVSS7.2AI score0.02511EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.11 views

Azure Linux 3.0 Security Update: ant / javapackages-bootstrap (CVE-2021-36374)

The version of ant / javapackages-bootstrap installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-36374 advisory. - When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant buil...

5.5CVSS6.2AI score0.0262EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.10 views

CBL Mariner 2.0 Security Update: ant / javapackages-bootstrap (CVE-2021-36374)

The version of ant / javapackages-bootstrap installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-36374 advisory. - When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant buil...

5.5CVSS6.3AI score0.0262EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/02/27 1:28 p.m.21 views

Security Bulletin:Vulnerabiilties in swagger-ui and Bootstrap affect watsonx.data

Summary swagger-ui is vulnerable to conduct spoofing attacks. Bootstrap is vulnerable to cross-site scripting. These could affect watsonx.data. Vulnerability Details CVEID:CVE-2018-25031 DESCRIPTION: swagger-ui could allow a remote attacker to conduct spoofing attacks. By persuading a victim to...

6.1CVSS6.3AI score0.42326EPSS
Exploits9Affected Software1
Chainguard
Chainguard
added 2025/02/26 10:12 p.m.4 views

GHSA-MVPH-H5J7-4H2G vulnerabilities

Vulnerabilities for packages: dotnet-bootstrap...

7.3AI score
Exploits0
Wolfi
Wolfi
added 2025/02/26 6:16 p.m.3 views

GHSA-MVPH-H5J7-4H2G vulnerabilities

Vulnerabilities for packages: dotnet-bootstrap...

7.5AI score
Exploits0
Wolfi
Wolfi
added 2025/02/25 3:16 p.m.61 views

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: coredns, skaffold, temporal-ui-server, go-licenses, aws-load-balancer-controller, node-problem-detector, gops, terraform, speedtest-go, gke-gcloud-auth-plugin, minio, tflint, bom, tailscale, nri-mssql, docker-credential-gcr, dex, nerdctl, prometheus-blackbox-exporter...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/15 2:21 p.m.7 views

CVE-2025-26551

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sureshdsk Bootstrap collapse bootstrap-collapse allows Stored XSS.This issue affects Bootstrap collapse: from n/a through = 1.0.4...

7.1CVSS7.2AI score0.00231EPSS
Exploits0References1
NVD
NVD
added 2025/02/13 2:16 p.m.7 views

CVE-2025-26551

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sureshdsk Bootstrap collapse bootstrap-collapse allows Stored XSS.This issue affects Bootstrap collapse: from n/a through = 1.0.4...

7.1CVSS0.00231EPSS
Exploits0References1
CVE
CVE
added 2025/02/13 1:52 p.m.59 views

CVE-2025-26551

CVE-2025-26551 concerns the WordPress Bootstrap Collapse plugin (versions

7.1CVSS7.2AI score0.00231EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/13 1:52 p.m.19 views

CVE-2025-26551 WordPress Bootstrap collapse plugin <= 1.0.4 - CSRF to Stored Cross-Site Scripting vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sureshdsk Bootstrap collapse bootstrap-collapse allows Stored XSS.This issue affects Bootstrap collapse: from n/a through = 1.0.4...

7.1CVSS0.00231EPSS
Exploits0References1
Rows per page
Query Builder