Lucene search
K

9 matches found

F5 Networks
F5 Networks
added 2025/04/08 5:47 p.m.7 views

K000150762: jsoup vulnerabilities CVE-2015-6748, CVE-2021-37714, and CVE-2022-36033

Security Advisory Description CVE-2015-6748 Cross-site scripting XSS vulnerability in jsoup before 1.8.3. CVE-2021-37714 jsoup is a Java library for working with HTML. Those using jsoup versions prior to 1.14.2 to parse untrusted HTML or XML may be vulnerable to DOS attacks. If the parser is run ...

7.5CVSS5.6AI score0.06873EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/13 1:28 a.m.6 views

at.bestsolution:at.bestsolution.maven.publisher (>=1.0.0 <=1.1.1), at.newmedialab.ldpath:ldpath-functions-html (=0.9.13) +2717 more potentially affected by CVE-2015-6748 via org.jsoup:jsoup (>=1.6.0 <=1.8.2)

org.jsoup:jsoup MAVEN version =1.6.0, =1.0.0, =0.3.1, =0.1.0, =1.0, =1.0, =1.16.0, =2.2.0 and more Source cves: CVE-2015-6748 Source advisory: OSV:GHSA-48RH-QGJR-XFJ6...

6.1CVSS6.7AI score0.02207EPSS
Exploits0
Debian
Debian
added 2020/01/26 9:36 p.m.88 views

[SECURITY] [DLA 2075-1] jsoup security update

Package : jsoup Version : 1.8.1-1+deb8u1 CVE ID : CVE-2015-6748 An issue has been found in jsoup, a Java HTML parser that makes sense of real-world HTML soup. Due to bad handling of missing at EOF a cross-site scripting XSS vulnerability could appear. For Debian 8 "Jessie", this problem has been...

6.1CVSS6.1AI score0.02207EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 7:52 p.m.39 views

Security Bulletin: Vulnerability in JSoup affects IBM Forms Experience Builder (CVE-2015-6748)

Summary A JSoup vulnerablity which allows a remote attacker to exploit a specially-crafted URL to access user authentication credentials was addressed by IBM Forms Experience Builder. Vulnerability Details CVE-ID: CVE-2015-6748 Description: JSoup is vulnerable to cross-site scripting, caused by...

6.1CVSS1AI score0.02207EPSS
Exploits0Affected Software1
NVD
NVD
added 2017/09/25 5:29 p.m.24 views

CVE-2015-6748

Cross-site scripting XSS vulnerability in jsoup before 1.8.3...

6.1CVSS6.2AI score0.02207EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2017/09/25 5:0 p.m.35 views

CVE-2015-6748

Cross-site scripting XSS vulnerability in jsoup before 1.8.3...

6.1CVSS6.1AI score0.02207EPSS
Exploits0
CVE
CVE
added 2017/09/25 5:0 p.m.125 views

CVE-2015-6748

CVE-2015-6748 affects the jsoup HTML parser library with a cross-site scripting (XSS) vulnerability present in versions before 1.8.3. Exploitation details are not provided in the documents beyond the XSS note; remediation is to upgrade to jsoup 1.8.3 or later.

6.1CVSS6AI score0.02207EPSS
Exploits0References7Affected Software1
RedHat Linux
RedHat Linux
added 2015/12/07 8:46 p.m.61 views

Critical: Red Hat Security Advisory: Red Hat JBoss BRMS 6.2.0 update

Red Hat JBoss BRMS 6.2.0, which fixes three security issues, several bugs, and adds various enhancements, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, whi...

10CVSS6.9AI score0.83274EPSS
Exploits9References7
OSV
OSV
added 2015/09/08 7:20 a.m.7 views

MGASA-2015-0340 Updated jsoup package fixes security vulnerability

Jsoup before 1.8.3 was vulnerable to a possible XSS issue in the validator, related to how it handled tags without a closing '' when reaching EOF CVE-2015-6748...

6.1CVSS5.8AI score0.02207EPSS
Exploits0References3
Rows per page
Query Builder