Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/04/21 7:23 p.m.7 views

CVE-2026-23753

GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the language management functionality where the charset POST parameter is passed directly to SWIFTLanguage::Create without HTML sanitization and subsequently rendered unsanitized by ViewLanguage.RenderGrid. An...

4.8CVSS5.7AI score0.00151EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0603

Malware in sbrugna...

6.1CVSS6.1AI score0.01135EPSS
Exploits0References6
OSV
OSV
added 2017/08/09 6:29 p.m.4 views

CVE-2014-6393

The Express web framework before 3.11 and 4.x before 4.5 for Node.js does not provide a charset field in HTTP Content-Type headers in 400 level responses, which might allow remote attackers to conduct cross-site scripting XSS attacks via characters in a non-standard encoding...

6.1CVSS6AI score
Exploits0References3
NVD
NVD
added 2010/06/17 4:30 p.m.19 views

CVE-2010-1382

Cross-site scripting XSS vulnerability in Wiki Server in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote authenticated users to inject arbitrary web script or HTML via crafted Wiki content, related to lack of a charset field...

3.5CVSS5AI score0.0147EPSS
Exploits0References6
Prion
Prion
added 2010/06/17 4:30 p.m.24 views

Cross site scripting

Cross-site scripting XSS vulnerability in Wiki Server in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote authenticated users to inject arbitrary web script or HTML via crafted Wiki content, related to lack of a charset field...

3.5CVSS5.4AI score0.0147EPSS
Exploits0References6Affected Software2
CVE
CVE
added 2010/06/17 4:0 p.m.57 views

CVE-2010-1382

The CVE-2010-1382 issue affects Apple Mac OS X Wiki Server: specifically OS X 10.5.8 and 10.6 before 10.6.4. The root cause is a lack of a charset field in Wiki content, enabling a cross-site scripting (XSS) vector. Impact stated: remote authenticated users can inject arbitrary web script or HTML...

3.5CVSS5.9AI score0.0147EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2010/06/17 4:0 p.m.22 views

CVE-2010-1382

Cross-site scripting XSS vulnerability in Wiki Server in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote authenticated users to inject arbitrary web script or HTML via crafted Wiki content, related to lack of a charset field...

6.2AI score0.0147EPSS
Exploits0References6
Prion
Prion
added 2009/02/19 4:30 p.m.20 views

Format string

msnmsgr.exe in Windows Live Messenger WLM 2009 build 14.0.8064.206, and other 14.0.8064.x builds, allows remote attackers to cause a denial of service application crash via a modified header in a packet, as possibly demonstrated by a UTF-8.0 value of the charset field in the Content-Type header...

5CVSS7.1AI score0.17365EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder