Lucene search
+L

4 matches found

Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.15 views

PT-2026-47449

Name of the Vulnerable Software and Affected Versions typo3/html-sanitizer versions prior to 2.3.2 Description Namespace attributes are not encoded correctly during HTML serialization. This flaw allows the cross-site scripting prevention mechanism to be bypassed. Cross-site scripting is a techniq...

5.1CVSS4.8AI score0.00366EPSS
Exploits0References8
Packet Storm News
Packet Storm News
added 2025/05/12 12:0 a.m.7 views

Browser Security Posture Analysis: a Client-Side Security Assessment Framework

Modern web browsers have effectively become the new operating system for business applications, yet their security posture is often under-scrutinized. This paper presents a novel, comprehensive Browser Security Posture Analysis Framework1, a browser-based client-side security assessment toolkit...

6.5AI score
Exploits0
FreeBSD
FreeBSD
added 2022/12/13 12:0 a.m.34 views

typo3 -- multiple vulnerabilities

TYPO3 reports: TYPO3-CORE-SA-2022-012: Denial of Service in Page Error Handling. TYPO3-CORE-SA-2022-013: Weak Authentication in Frontend Login. TYPO3-CORE-SA-2022-014: Insufficient Session Expiration after Password Reset. TYPO3-CORE-SA-2022-015: Arbitrary Code Execution via Form Framework...

8.8CVSS1.6AI score0.00785EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2014/10/23 3:33 a.m.45 views

The Bash Vulnerability: How to Protect your Environment

A recently discovered hole in the security of the Bourne-Again Shell bash has the majority of Unix/Linux including OS X admins sweating bullets. You should be, too--attackers have already developed exploits to unleash on unpatched web servers, network services and daemons that use shell scripts...

5.4CVSS7.8AI score0.00658EPSS
Exploits0
Rows per page
Query Builder