Lucene search
K

6 matches found

OSV
OSV
added 2022/05/14 3:4 a.m.16 views

GHSA-88FH-8979-Q2RR Angular Redactor XSS Vulnerability

Imperavi Redactor 3 in Angular Redactor 1.1.6, when HTML content mode is used, allows stored XSS, as demonstrated by an onerror attribute of an IMG element, a related issue to CVE-2018-7035...

6.1CVSS5.4AI score0.00937EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/05/14 3:4 a.m.27 views

Angular Redactor XSS Vulnerability

Imperavi Redactor 3 in Angular Redactor 1.1.6, when HTML content mode is used, allows stored XSS, as demonstrated by an onerror attribute of an IMG element, a related issue to CVE-2018-7035...

6.1CVSS6.6AI score0.00937EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2018/07/05 10:29 p.m.27 views

CVE-2018-13339

Imperavi Redactor 3 in Angular Redactor 1.1.6, when HTML content mode is used, allows stored XSS, as demonstrated by an onerror attribute of an IMG element, a related issue to CVE-2018-7035...

6.1CVSS5.5AI score0.00937EPSS
Exploits1References2
Prion
Prion
added 2018/07/05 10:29 p.m.21 views

Cross site scripting

Imperavi Redactor 3 in Angular Redactor 1.1.6, when HTML content mode is used, allows stored XSS, as demonstrated by an onerror attribute of an IMG element, a related issue to CVE-2018-7035...

4.3CVSS5.4AI score0.0098EPSS
Exploits2References2Affected Software1
OSV
OSV
added 2018/04/05 2:29 p.m.20 views

CVE-2018-7035

Cross-site scripting XSS vulnerability in Gleez CMS 1.2.0 and 2.0 might allow remote attackers users to inject JavaScript via HTML content in an editor, which will result in Stored XSS when an Administrator tries to edit the same content, as demonstrated by use of the source editor for HTML mode ...

5.4CVSS6AI score
Exploits0References1
CVE
CVE
added 2018/04/05 2:0 p.m.65 views

CVE-2018-7035

CVE-2018-7035 describes a Stored XSS in Gleez CMS (versions 1.2.0 and 2.0) where an attacker can inject JavaScript via HTML content in an editor. The issue is demonstrated when using the source editor in HTML mode during Add Blog, leading to Stored XSS when an Administrator edits the content. The...

5.4CVSS5.3AI score0.0098EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder