Lucene search
+L

7 matches found

redhatcve
redhatcve
added 2025/05/22 9:23 p.m.9 views

CVE-2021-29460

Kirby is an open source CMS. An editor with write access to the Kirby Panel can upload an SVG file that contains harmful content like...

7.6CVSS6.8AI score0.03174EPSS
Exploits4References1
prion
prion
added 2023/10/17 10:15 p.m.69 views

Code injection

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

3.3CVSS2.1AI score0.00809EPSS
Exploits0References2Affected Software1
circl
circl
added 2021/04/28 2:5 p.m.5 views

CVE-2021-29460

creationtimestamp| type| source ---|---|--- 2021-04-28 14:05:12+00:00| published-proof-of-concept| https://t.me/pwnwikizhchannel/276...

7.6CVSS6.2AI score0.03174EPSS
Exploits4References1
exploitdb
exploitdb
added 2021/04/28 12:0 a.m.970 views

Kirby CMS 3.5.3.1 - 'file' Cross-Site Scripting (XSS)

Exploit Title: Kirby CMS 3.5.3.1 - 'file' Cross-Site Scripting XSS Date: 21-04-2021 Exploit Author: Sreenath Raghunathan Vendor Homepage: https://getkirby.com/ Software Link: https://github.com/getkirby/kirby Version: 3.5.3.1REQUIRED CVE : CVE-2021-29460 POST /api/users//avatar HTTP/1.1 Host:...

7.6CVSS5.8AI score0.03174EPSS
Exploits4
zdt
zdt
added 2021/04/28 12:0 a.m.55 views

Kirby CMS 3.5.3.1 - (file) Cross-Site Scripting Vulnerability

Exploit Title: Kirby CMS 3.5.3.1 - 'file' Cross-Site Scripting XSS Exploit Author: Sreenath Raghunathan Vendor Homepage: https://getkirby.com/ Software Link: https://github.com/getkirby/kirby Version: 3.5.3.1REQUIRED CVE : CVE-2021-29460 POST /api/users//avatar HTTP/1.1 Host: User-Agent:...

7.6CVSS0.2AI score0.03174EPSS
Exploits4
packetstorm
packetstorm
added 2021/04/28 12:0 a.m.525 views

Kirby CMS 3.5.3.1 Cross Site Scripting

Exploit Title: Kirby CMS 3.5.3.1 - 'file' Cross-Site Scripting XSS Date: 21-04-2021 Exploit Author: Sreenath Raghunathan Vendor Homepage: https://getkirby.com/ Software Link: https://github.com/getkirby/kirby Version: 3.5.3.1REQUIRED CVE : CVE-2021-29460 POST /api/users//avatar HTTP/1.1 Host:...

5.8AI score0.03174EPSS
Exploits4
cve
cve
added 2021/04/27 8:10 p.m.133 views

CVE-2021-29460

Summary of CVE-2021-29460 : Kirby, an open‑source CMS, is vulnerable to cross‑site scripting via unsanitized SVG uploads. An editor with write access to the Kirby Panel can upload an SVG file containing harmful content (for example, script tags). If a victim opens such a link while logged into Ki...

7.6CVSS5.7AI score0.03174EPSS
Exploits4References3Affected Software1
Rows per page
Query Builder