Lucene search
K

103 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/15 8:28 a.m.6 views

CVE-2026-3659

The WP Circliful plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' shortcode attribute of the circliful shortcode and via multiple shortcode attributes of the circlifuldirect shortcode in all versions up to and including 1.2. This is due to insufficient input...

6.4CVSS5.9AI score0.00322EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2026/04/07 10:11 p.m.3 views

CVE-2026-39936 Stored XSS in Score due to usage of non-reserved data attributes

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in The Wikimedia Foundation Mediawiki - Score Extension allows Cross-Site Scripting XSS. The issue has been remediated on the master branch, and in the release branches for MediaWiki versions 1.43,...

6.9CVSS5.8AI score0.00268EPSS
Exploits0References2
CVE
CVE
added 2026/04/07 10:11 p.m.11 views

CVE-2026-39936

Affected software: Wikimedia Foundation MediaWiki - Score Extension. Vulnerability: Stored XSS due to improper neutralization of input during web page generation via non-reserved data attributes. Impact: Cross-Site Scripting with low impacts to confidentiality, integrity, and availability, as per...

6.9CVSS5.8AI score0.00268EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/07 5:23 p.m.2 views

CVE-2026-39335 ChurchCRM has Stored XSS via Unescaped data-* Attributes in Group/Family Controls

ChurchCRM is an open-source church management system. Prior to 7.1.1, there is Stored XSS in group remove control and family editor state/country. This is primarily an admin-to-admin stored XSS path when writable entity fields are abused. This vulnerability is fixed in 7.1.1...

6.1CVSS5.9AI score0.00252EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/04/07 5:23 p.m.20 views

CVE-2026-39335 ChurchCRM has Stored XSS via Unescaped data-* Attributes in Group/Family Controls

ChurchCRM is an open-source church management system. Prior to 7.1.1, there is Stored XSS in group remove control and family editor state/country. This is primarily an admin-to-admin stored XSS path when writable entity fields are abused. This vulnerability is fixed in 7.1.1...

6.1CVSS0.00252EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/03/19 6:46 a.m.26 views

CVE-2026-4120 Info Cards <= 2.0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Block Attributes

The Info Cards – Add Text and Media in Card Layouts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'btnUrl' parameter within the Info Cards block in all versions up to, and including, 2.0.7. This is due to insufficient input validation on URL schemes, specifically the...

6.4CVSS0.00222EPSS
Exploits0References8
NVD
NVD
added 2026/03/12 6:16 p.m.7 views

CVE-2026-31860

Unhead is a document head and template manager. Prior to 2.1.11, useHeadSafe can be bypassed to inject arbitrary HTML attributes, including event handlers, into SSR-rendered tags. This is the composable that Nuxt docs recommend for safely handling user-generated content. The acceptDataAttrs...

6.1CVSS0.00258EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/12 5:18 p.m.1 views

CVE-2026-31860 Unhead has a XSS bypass in `useHeadSafe` via attribute name injection and case-sensitive protocol check

Unhead is a document head and template manager. Prior to 2.1.11, useHeadSafe can be bypassed to inject arbitrary HTML attributes, including event handlers, into SSR-rendered tags. This is the composable that Nuxt docs recommend for safely handling user-generated content. The acceptDataAttrs...

5.3CVSS5.9AI score0.00258EPSS
Exploits1References1
OSV
OSV
added 2026/03/12 5:18 p.m.5 views

CVE-2026-31860 Unhead has a XSS bypass in `useHeadSafe` via attribute name injection and case-sensitive protocol check

Unhead is a document head and template manager. Prior to 2.1.11, useHeadSafe can be bypassed to inject arbitrary HTML attributes, including event handlers, into SSR-rendered tags. This is the composable that Nuxt docs recommend for safely handling user-generated content. The acceptDataAttrs...

5.3CVSS5.9AI score0.00258EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/12 5:18 p.m.27 views

CVE-2026-31860 Unhead has a XSS bypass in `useHeadSafe` via attribute name injection and case-sensitive protocol check

Unhead is a document head and template manager. Prior to 2.1.11, useHeadSafe can be bypassed to inject arbitrary HTML attributes, including event handlers, into SSR-rendered tags. This is the composable that Nuxt docs recommend for safely handling user-generated content. The acceptDataAttrs...

5.3CVSS0.00258EPSS
Exploits1References1
CVE
CVE
added 2026/03/12 5:18 p.m.16 views

CVE-2026-31860

CVE-2026-31860 affects Unhead prior to version 2.1.11, where the useHeadSafe() composable can be bypassed to inject arbitrary HTML attributes (including event handlers) into SSR-rendered tags via acceptDataAttrs. The vulnerability arises from allowing any key starting with data- (and even spaces...

6.1CVSS5.9AI score0.00258EPSS
Exploits1References1Affected Software1
Snyk
Snyk
added 2026/03/12 2:19 p.m.4 views

Cross-site Scripting (XSS)

Overview unhead is a Full-stack manager built for any framework. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the acceptDataAttrs function, which allows attribute names containing spaces or illegal characters to be injected into SSR-rendered HTML tags. An...

6.1CVSS5.9AI score0.00258EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.4 views

PT-2026-25020

Unhead is a document head and template manager. Prior to 2.1.11, useHeadSafe can be bypassed to inject arbitrary HTML attributes, including event handlers, into SSR-rendered tags. This is the composable that Nuxt docs recommend for safely handling user-generated content. The acceptDataAttrs...

5.3CVSS5.9AI score0.00258EPSS
Exploits1References2
Veracode
Veracode
added 2026/02/25 8:6 a.m.5 views

Cross-site Scripting (XSS)

Orejime is vulnerable to cross-site scripting XSS. The vulnerability is due to Orejime converting data- attributes into active attributes e.g., data-href → href without sanitization, which allows an attacker to execute malicious javascript: code if they can inject HTML into the page...

6.1CVSS5.8AI score0.00183EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/03 1:12 a.m.4 views

CVE-2025-67479 Magic word replacement in legacy parser allows using reserved data attributes through wikitext

Vulnerability in Wikimedia Foundation MediaWiki, Wikimedia Foundation Cite. This vulnerability is associated with program files includes/Parser/CoreParserFunctions.Php, includes/Parser/Sanitizer.Php. This issue affects MediaWiki: from before 1.39.14, 1.43.4, 1.44.1; Cite: from before 1.39.14,...

5.3AI score0.0027EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/03 1:12 a.m.25 views

CVE-2025-67479 Magic word replacement in legacy parser allows using reserved data attributes through wikitext

Vulnerability in Wikimedia Foundation MediaWiki, Wikimedia Foundation Cite. This vulnerability is associated with program files includes/Parser/CoreParserFunctions.Php, includes/Parser/Sanitizer.Php. This issue affects MediaWiki: from before 1.39.14, 1.43.4, 1.44.1; Cite: from before 1.39.14,...

0.0027EPSS
Exploits0References1
CVE
CVE
added 2026/02/03 1:12 a.m.22 views

CVE-2025-67479

CVE-2025-67479 is a MediaWiki vulnerability (Cite context) involving magic word replacement in the legacy parser that allows using reserved data attributes via wikitext. Affected are MediaWiki releases before 1.39.14, 1.43.4, and 1.44.1; Cite module is also listed as affected. Debian LTS advisory...

5.2AI score0.0027EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/02/02 11:52 p.m.10 views

CVE-2025-61638

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki, Wikimedia Foundation Parsoid. This vulnerability is associated with program files includes/parser/Sanitizer.Php, src/Core/Sanitizer.Php. This issue affects...

4.8CVSS5.2AI score0.00233EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/20 5:12 p.m.5 views

CVE-2025-68457

Orejime is a consent manager that focuses on accessibility. On HTML elements handled by Orejime prior to version 2.3.2, one could run malicious code by embedding javascript: code within data attributes. When consenting to the related purpose, Orejime would turn data attributes into unprefixed one...

6.3CVSS6.9AI score0.00183EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/19 7:17 p.m.5 views

EUVD-2025-204585

Orejime has executable code in HTML attributes...

6.3CVSS6.5AI score0.00183EPSS
Exploits0References4
Rows per page
Query Builder