Lucene search
+L

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2021-1664

Malware in sbrugna...

6.1CVSS6.1AI score0.00739EPSS
Exploits0References7
RubySec
RubySec
added 2021/08/02 12:0 a.m.31 views

XSS in qiita-markdown

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

6.1CVSS3.8AI score0.00774EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/06/21 1:15 p.m.17 views

Design/Logic Flaw

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

4.3CVSS5.8AI score0.00774EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/06/21 12:18 p.m.25 views

CVE-2021-28833

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

6AI score0.00739EPSS
Exploits0References2
NVD
NVD
added 2021/03/18 4:15 p.m.23 views

CVE-2021-28796

Increments Qiita::Markdown before 0.33.0 allows XSS in transformers...

6.1CVSS0.00774EPSS
Exploits0References2
OSV
OSV
added 2021/03/18 4:15 p.m.12 views

CVE-2021-28796

Increments Qiita::Markdown before 0.33.0 allows XSS in transformers...

6.1CVSS5.9AI score
Exploits0References2
CVE
CVE
added 2021/03/18 3:5 p.m.76 views

CVE-2021-28796

CVE-2021-28796 affects Qiita::Markdown (Ruby) prior to 0.33.0, allowing XSS via transformers. The issue is documented across multiple connected sources (e.g., Red Hat CVEs, OSV/GHSA advisories) as a failure to sanitize or neutralize user-controlled input in the transformer path, leading to cross-...

6.1CVSS5.8AI score0.00774EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder