Lucene search
+L

4 matches found

nessus
nessus
added 2024/03/20 12:0 a.m.23 views

Fedora 38 : rubygem-yard (2024-3744975c4b)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-3744975c4b advisory. A security flaw was found on rubygem-yard that documents generated by yard may be vulnerable to XSS attack. This issue is now assigned as CVE-2024-27285 . Th...

6.1CVSS6.5AI score0.0106EPSS
Exploits1References2
nessus
nessus
added 2024/03/05 12:0 a.m.21 views

Debian dsa-5635 : yard - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5635 advisory. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5635-1...

6.1CVSS6.4AI score0.0106EPSS
Exploits1References5
openvas
openvas
added 2024/03/05 12:0 a.m.21 views

Debian: Security Advisory (DSA-5635-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.6AI score0.0106EPSS
Exploits1References2
cve
cve
added 2024/02/28 7:22 p.m.154 views

CVE-2024-27285

CVE-2024-27285 affects YARD, a Ruby documentation generator. The vulnerability lies in the generated frames.html, where inadequate sanitization in the JavaScript of the frames.erb template allowed Cross-Site Scripting (XSS). Public advisories (Debian, Fedora, Ubuntu, NVD) attribute the issue to Y...

6.1CVSS5.2AI score0.0106EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder