Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.5 views

webkitgtk: Command injection in web inspector

A command injection issue existed in Web Inspector. This issue was addressed with improved escaping. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Copying a URL from Web...

7.8CVSS6.7AI score0.01736EPSS
Exploits0References5
Trellix
Trellix
added 2024/07/29 12:0 a.m.6 views

OneDrive Pastejacking

OneDrive Pastejacking: The crafty phishing and downloader campaign By Rafael Pena · July 29, 2024 Over the past few weeks, the Trellix Advanced Research Center has observed a sophisticated Phishing/downloader campaign targeting Microsoft OneDrive users. This campaign heavily relies on social...

7.2AI score
Exploits0
CNNVD
CNNVD
added 2023/03/31 12:0 a.m.4 views

GitLab 命令注入漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A security vulnerability exists in GitLab Community Edition and GitLab...

9.8CVSS8.4AI score0.01109EPSS
Exploits0References5
OSV
OSV
added 2023/03/30 4:15 p.m.2 views

CVE-2022-30351

PDFZorro PDFZorro Online r20220428 using TCPDF 6.2.5, despite having workflows claiming to correctly remove redacted information from a supplied PDF file, does not properly sanitize this information in all cases, causing redacted information, including images and text embedded in the PDF file, to...

7.5CVSS5.8AI score0.00565EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/21 9:15 a.m.6 views

CVE-2022-23073

In Recipes, versions 1.0.5 through 1.2.5 are vulnerable to Stored Cross-Site Scripting XSS, in copy to clipboard functionality. When a victim accesses the food list page, then adds a new Food with a malicious javascript payload in the ‘Name’ parameter and clicks on the clipboard icon, an XSS...

3.5CVSS5.8AI score0.00791EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2019/08/16 12:0 a.m.1 views

UBUNTU-CVE-2019-11733

When a master password is set, it is required to be entered again before stored passwords can be accessed in the 'Saved Logins' dialog. It was found that locally stored passwords can be copied to the clipboard thorough the 'copy password' context menu item without re-entering the master password ...

9.8CVSS6.8AI score0.01411EPSS
Exploits0References4
OSV
OSV
added 2018/06/16 1:29 a.m.3 views

CVE-2018-5754

Cross-site scripting XSS vulnerability in the office-web component in Open-Xchange OX App Suite before 7.8.3-rev12 and 7.8.4 before 7.8.4-rev9 allows remote attackers to inject arbitrary web script or HTML via a crafted presentation file, related to copying content to the clipboard...

5.4CVSS5.9AI score0.02976EPSS
Exploits5References3
Rows per page
Query Builder