Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2015/07/06 12:0 a.m.29 views

openSUSE Security Update : rubygem-RedCloth (openSUSE-2015-457)

rubygem-RedCloth was updated to fix one security issue. The following vulnerability was fixed : CVE-2012-6684: A cross-site scripting XSS vulnerability allowed remote attackers to inject arbitrary web script or HTML via a javascript: URI boo912212 %NASLMINLEVEL 70300 C Tenable Network Security,...

4.3CVSS7.9AI score0.02253EPSS
Exploits1References2
Debian
Debianadded 2015/03/07 6:6 p.m.29 views

[SECURITY] [DLA 167-1] redcloth security update

Package : redcloth Version : 4.2.2-1.1+deb6u1 CVE ID : CVE-2012-6684 Debian Bug : 774748 Kousuke Ebihara discovered that redcloth, a Ruby module used to convert Textile markup to HTML, did not properly sanitize its input. This allowed a remote attacker to perform a cross-site scripting attack by...

4.3CVSS9.2AI score0.02253EPSS
Exploits1
Debian
Debianadded 2015/02/22 6:2 p.m.19 views

[SECURITY] [DSA 3168-1] ruby-redcloth security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3168-1 [email protected] http://www.debian.org/security/ Sebastien Delafond February 22, 2015 http://www.debian.org/security/faq -...

4.3CVSS6AI score0.02253EPSS
Exploits1
OSV
OSVadded 2015/01/08 1:59 a.m.6 views

CVE-2012-6684

Cross-site scripting XSS vulnerability in the RedCloth library 4.2.9 for Ruby and earlier allows remote attackers to inject arbitrary web script or HTML via a javascript: URI...

5.4AI score
Exploits0References8
UbuntuCve
UbuntuCveadded 2015/01/08 1:59 a.m.21 views

CVE-2012-6684

Cross-site scripting XSS vulnerability in the RedCloth library 4.2.9 for Ruby and earlier allows remote attackers to inject arbitrary web script or HTML via a javascript: URI...

4.3CVSS7.3AI score0.02253EPSS
Exploits1References5
CVE
CVEadded 2015/01/08 1:0 a.m.80 views

CVE-2012-6684

CVE-2012-6684 affects the RedCloth Ruby library (versions up to 4.2.9). The vulnerability arises because input is not properly sanitized, allowing a remote attacker to inject arbitrary JavaScript via a javascript: URI in Textile-to-HTML output, resulting in cross-site scripting (XSS). Public disc...

4.3CVSS7.5AI score0.02253EPSS
Exploits1References5Affected Software1
Debian CVE
Debian CVEadded 2015/01/08 1:0 a.m.23 views

CVE-2012-6684

Cross-site scripting XSS vulnerability in the RedCloth library 4.2.9 for Ruby and earlier allows remote attackers to inject arbitrary web script or HTML via a javascript: URI...

4.3CVSS3.9AI score0.02253EPSS
Exploits1
RubySec
RubySecadded 2012/02/29 12:0 a.m.26 views

CVE-2012-6684 rubygem-RedCloth: XSS vulnerability

Cross-site scripting XSS vulnerability in the RedCloth library 4.2.9 for Ruby and earlier allows remote attackers to inject arbitrary web script or HTML via a javascript: URI...

4.3CVSS8AI score0.02253EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder