Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-3451

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.00511EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 7:14 a.m.19 views

CVE-2024-53864

Ibexa Admin UI Bundle is all the necessary parts to run the Ibexa DXP Back Office interface. The Content name pattern is used to build Content names from one or more fields. An XSS vulnerability has been found in this mechanism. Content edit permission is required to exploit it. After the fix, an...

5.3CVSS5.9AI score0.00511EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/29 6:45 p.m.10 views

CVE-2024-53864 Cross-site Scripting in a field that is used in the Content name pattern in ibexa/admin-ui

Ibexa Admin UI Bundle is all the necessary parts to run the Ibexa DXP Back Office interface. The Content name pattern is used to build Content names from one or more fields. An XSS vulnerability has been found in this mechanism. Content edit permission is required to exploit it. After the fix, an...

5.3CVSS6.1AI score0.00511EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/11/29 6:45 p.m.48 views

CVE-2024-53864 Cross-site Scripting in a field that is used in the Content name pattern in ibexa/admin-ui

Ibexa Admin UI Bundle is all the necessary parts to run the Ibexa DXP Back Office interface. The Content name pattern is used to build Content names from one or more fields. An XSS vulnerability has been found in this mechanism. Content edit permission is required to exploit it. After the fix, an...

5.3CVSS0.00511EPSS
Exploits0References4
CVE
CVE
added 2024/11/29 6:45 p.m.62 views

CVE-2024-53864

CVE-2024-53864 describes an XSS vulnerability in the Ibexa Admin UI Bundle, specifically in the Content name pattern mechanism used to build content names from multiple fields. Exploitation requires content edit permissions, and the issue allows injection of malicious scripts via the Content name...

5.3CVSS5.8AI score0.00511EPSS
Exploits0References4
OSV
OSV
added 2024/11/29 6:45 p.m.20 views

CVE-2024-53864 Cross-site Scripting in a field that is used in the Content name pattern in ibexa/admin-ui

Ibexa Admin UI Bundle is all the necessary parts to run the Ibexa DXP Back Office interface. The Content name pattern is used to build Content names from one or more fields. An XSS vulnerability has been found in this mechanism. Content edit permission is required to exploit it. After the fix, an...

5.3CVSS5.9AI score0.00511EPSS
Exploits0References6
OSV
OSV
added 2022/06/29 4:51 p.m.3 views

DRUPAL-CONTRIB-2022-046

The Lottiefiles Field module enables you to integrate the lottiefiles features into your page. The module does not sufficiently filter user-provided text on output, resulting in a Cross-Site Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker must have a role...

6AI score
Exploits0References1
Rows per page
Query Builder