Lucene search
K

26 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:35 a.m.5 views

CVE-2021-41461

Cross-site scripting XSS vulnerability in concrete/elements/collectionadd.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the mode parameter...

6.1CVSS5.9AI score0.00818EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-28492

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00818EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-28490

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00818EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:21 p.m.9 views

CVE-2021-41464

Cross-site scripting XSS vulnerability in concrete/elements/collectionadd.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the rel parameter...

6.1CVSS5.9AI score0.00818EPSS
Exploits1
NVD
NVD
added 2021/10/01 4:15 p.m.15 views

CVE-2021-41463

Cross-site scripting XSS vulnerability in toos/permissions/dialogs/access/entity/types/groupcombination.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the cID parameter...

6.1CVSS0.00818EPSS
Exploits1References2
NVD
NVD
added 2021/10/01 4:15 p.m.18 views

CVE-2021-41464

Cross-site scripting XSS vulnerability in concrete/elements/collectionadd.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the rel parameter...

6.1CVSS0.00818EPSS
Exploits1References2
OSV
OSV
added 2021/10/01 4:15 p.m.17 views

CVE-2021-41463

Cross-site scripting XSS vulnerability in toos/permissions/dialogs/access/entity/types/groupcombination.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the cID parameter...

6.1CVSS5.9AI score
Exploits0References2
OSV
OSV
added 2021/10/01 4:15 p.m.15 views

CVE-2021-41465

Cross-site scripting XSS vulnerability in concrete/elements/collectiontheme.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the rel parameter...

6.1CVSS5.9AI score
Exploits0References2
OSV
OSV
added 2021/10/01 4:15 p.m.10 views

CVE-2021-41464

Cross-site scripting XSS vulnerability in concrete/elements/collectionadd.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the rel parameter...

6.1CVSS5.9AI score
Exploits0References2
NVD
NVD
added 2021/10/01 4:15 p.m.15 views

CVE-2021-41462

Cross-site scripting XSS vulnerability in concrete/elements/collectionadd.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the ctID parameter...

6.1CVSS0.00818EPSS
Exploits1References2
OSV
OSV
added 2021/10/01 4:15 p.m.12 views

CVE-2021-41461

Cross-site scripting XSS vulnerability in concrete/elements/collectionadd.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the mode parameter...

6.1CVSS5.9AI score
Exploits0References2
OSV
OSV
added 2021/10/01 4:15 p.m.13 views

CVE-2021-41462

Cross-site scripting XSS vulnerability in concrete/elements/collectionadd.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the ctID parameter...

6.1CVSS5.9AI score
Exploits0References2
Prion
Prion
added 2021/10/01 4:15 p.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in concrete/elements/collectionadd.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the ctID parameter...

4.3CVSS6AI score0.00818EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/10/01 4:15 p.m.2 views

CVE-2021-41465

Cross-site scripting XSS vulnerability in concrete/elements/collectiontheme.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the rel parameter...

6.1CVSS6.6AI score0.00818EPSS
Exploits1References3
Prion
Prion
added 2021/10/01 4:15 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in concrete/elements/collectionadd.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the mode parameter...

4.3CVSS6AI score0.00818EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/10/01 4:15 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in concrete/elements/collectionadd.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the rel parameter...

4.3CVSS6AI score0.00818EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/10/01 4:15 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in concrete/elements/collectiontheme.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the rel parameter...

4.3CVSS6AI score0.00818EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/10/01 4:15 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in toos/permissions/dialogs/access/entity/types/groupcombination.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the cID parameter...

4.3CVSS6AI score0.00818EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/10/01 3:42 p.m.25 views

CVE-2021-41465

Cross-site scripting XSS vulnerability in concrete/elements/collectiontheme.php in concrete5-legacy 5.6.4.0 and below allows remote attackers to inject arbitrary web script or HTML via the rel parameter...

6.2AI score0.00818EPSS
Exploits1References2
CVE
CVE
added 2021/10/01 3:42 p.m.42 views

CVE-2021-41464

CVE-2021-41464 affects concrete5-legacy 5.6.4.0 and earlier; Cross-site scripting via concrete/elements/collection_add.php (rel parameter) allows remote attackers to inject arbitrary web script/HTML. This is confirmed by multiple sources (NVD, Red Hat, CNVD). The provided documents do not specify...

6.1CVSS6AI score0.00818EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder