Lucene search
K

7 matches found

OSV
OSV
added last week6 views

CVE-2026-55647 DataEase: authenticated stored XSS in the dashboard text components

DataEase is an open source data visualization and analysis tool. Prior to 2.10.24, dashboard text components render stored component content with Vue v-html without server-side HTML sanitization, allowing an authenticated user who can edit dashboard component data to inject HTML with executable...

5.1CVSS6AI score0.00269EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-25143

Malicious code in bioql PyPI...

9CVSS6.6AI score0.00351EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/08/20 4:27 p.m.6 views

CVE-2025-54117

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Cross-site scripting XSS vulnerability in NamelessMC before 2.2.3 allows remote authenticated attackers to inject arbitrary web script or HTML via the dashboard text editor component. This vulnerability is fixed ...

9CVSS5.2AI score0.00351EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2018-18623

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana 5.3.1 has XSS via the Dashboard Text Panel screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099. CVE-2018-18623 Note that...

6.1CVSS6.9AI score0.01762EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/08/18 12:0 a.m.8 views

PT-2025-33664 · Unknown · Namelessmc

Name of the Vulnerable Software and Affected Versions: NamelessMC versions prior to 2.2.3 Description: NamelessMC is a website software for Minecraft servers. A cross-site scripting XSS issue exists in the dashboard text editor component, potentially allowing remote authenticated attackers to...

9CVSS5.9AI score0.00351EPSS
Exploits1References10
SUSE CVE
SUSE CVE
added 2023/02/15 4:22 a.m.3 views

SUSE CVE-2018-18623

Grafana 5.3.1 has XSS via the "Dashboard Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099...

6.1CVSS8.3AI score0.01762EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2019/01/03 5:45 p.m.6 views

grafana: XSS vulnerability via the "Dashboard > Text Panel" screen

A flaw was found in grafana. An incomplete fix for CVE-2018-12099 allows for a XSS in the "Dashboard Text Panel" screen...

6.1CVSS7.1AI score0.01762EPSS
Exploits1References5
Rows per page
Query Builder