CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Veracode•added 2021/02/10 9:19 a.m.•14 views

Mishandled Code

tt-rss is vulnerable to mishandled code. The vulnerability exists due to an issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. The cachedurl feature mishandles JavaScript inside an SVG document...

6.1CVSS2.1AI score0.00264EPSS

Exploits0References3Affected Software1

OSV•added 2020/09/19 9:15 p.m.•2 views

DEBIAN-CVE-2020-25789

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. The cachedurl feature mishandles JavaScript inside an SVG document...

6.1CVSS6.8AI score0.00264EPSS

Exploits0References1

UbuntuCve•added 2020/09/19 9:15 p.m.•16 views

CVE-2020-25789

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. The cachedurl feature mishandles JavaScript inside an SVG document...

6.1CVSS6.8AI score0.00264EPSS

Exploits0References3

Debian CVE•added 2020/09/19 8:17 p.m.•23 views

CVE-2020-25789

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. The cachedurl feature mishandles JavaScript inside an SVG document...

6.1CVSS6.4AI score0.00264EPSS

Exploits0

FreeBSD•added 2020/09/15 12:0 a.m.•25 views

tt-rss -- multiple vulnerabilities

tt-rss project reports: The cachedurl feature mishandles JavaScript inside an SVG document. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message. It does not validate all URLs before requesting them. Allows remote attackers to execute arbitrary PHP code via a...

10CVSS5.9AI score0.15535EPSS

Exploits4References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by