Lucene search
+L

7 matches found

RedHat Linux
RedHat Linux
added 2022/11/17 1:40 p.m.54 views

Important: Red Hat Security Advisory: Red Hat Data Grid 8.4.0 security update

An update for Red Hat Data Grid 8 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

8.8CVSS6.7AI score0.02191EPSS
Exploits5References11
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/16 10:17 p.m.46 views

Security Bulletin: IBM Robotic Process Automation is vunerable to cross-site scripting through Prism.js (CVE-2022-23647)

Summary Security Bulletin: IBM Robotic Process Automation is vunerable to cross-site scripting through Prism.js CVE-2022-23647 Vulnerability Details CVEID: CVE-2022-23647 DESCRIPTION: Prism.js Prism is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the...

7.5CVSS1.3AI score0.01479EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2022/02/21 5:36 p.m.122 views

CVE-2022-23647

A Cross-site scripting attack was found in Prism. The command-line plugin did not properly escape its output. This issue leads to the input text being inserted into the Document Object Model DOM as HTML code, which can be exploited by an attacker...

7.5CVSS0.8AI score0.01479EPSS
Exploits0References4
Circl
Circl
added 2022/02/18 6:38 p.m.6 views

CVE-2022-23647

creationtimestamp| type| source ---|---|--- 2022-02-18 18:38:13+00:00| seen| https://t.me/cibsecurity/37707...

7.5CVSS6.9AI score0.01479EPSS
Exploits0References1
CVE
CVE
added 2022/02/18 2:50 p.m.355 views

CVE-2022-23647

Prism.js Prism (command line plugin) is vulnerable to cross-site scripting due to improper escaping when output is inserted into the DOM. Affected versions: prior to 1.27.0 (1.14.0–1.26.x). The vulnerability does not affect Prism’s server-side usage or sites not using the Command Line plugin. The...

7.5CVSS6.5AI score0.01479EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/02/18 2:50 p.m.41 views

CVE-2022-23647 Cross-site Scripting in Prism

Prism is a syntax highlighting library. Starting with version 1.14.0 and prior to version 1.27.0, Prism's command line plugin can be used by attackers to achieve a cross-site scripting attack. The command line plugin did not properly escape its output, leading to the input text being inserted int...

7.5CVSS7.5AI score0.01479EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2022/02/18 2:50 p.m.59 views

CVE-2022-23647

Prism is a syntax highlighting library. Starting with version 1.14.0 and prior to version 1.27.0, Prism's command line plugin can be used by attackers to achieve a cross-site scripting attack. The command line plugin did not properly escape its output, leading to the input text being inserted int...

7.5CVSS7AI score0.01479EPSS
Exploits0
Rows per page
Query Builder