Lucene search
K

87 matches found

Debian CVE
Debian CVE
added 3 days ago8 views

CVE-2026-58028

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki, Wikimedia Foundation CentralAuth. This vulnerability is associated with program files includes/Api/ApiFormatBase.Php, includes/Api/ApiHelp.Php,...

5.8AI score0.0039EPSS
Exploits0
OSV
OSV
added 3 days ago2 views

UBUNTU-CVE-2026-58028

Disallow user JS in pretty-print api.php responses...

5.8AI score0.0039EPSS
Exploits0References7
NVD
NVD
added 2026/06/09 6:16 a.m.12 views

CVE-2026-8981

The Custom Block Builder WordPress plugin before 4.3.0 does not consistently check the unfilteredhtml capability across all paths that write to its block template code fields, allowing administrators on multisite installations or single-site installs with DISALLOWUNFILTEREDHTML defined to inject...

3.5CVSS0.00138EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.13 views

PT-2026-47690

The Custom Block Builder WordPress plugin before 4.3.0 does not consistently check the unfiltered html capability across all paths that write to its block template code fields, allowing administrators on multisite installations or single-site installs with DISALLOW UNFILTERED HTML defined to inje...

5.7AI score0.00138EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.13 views

PT-2026-44328

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the staging media atomisp component where private IOCTLs Input/Output Control are not sufficiently safe. To address this, private IOCTLs are disallowed by returning fr...

9.1CVSS5.9AI score0.03663EPSS
Exploits11References291
RedhatCVE
RedhatCVE
added 2026/02/13 7:18 p.m.5 views

CVE-2026-25890

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to 2.57.1, an authenticated user can bypass the application's "Disallow" file path rules by modifying the request URL. By adding multiple slashe...

8.1CVSS5.5AI score0.00461EPSS
Exploits2References1
Github Security Blog
Github Security Blog
added 2026/02/10 12:25 a.m.9 views

File Browser has a Path-Based Access Control Bypass via Multiple Leading Slashes in URL

Summary An authenticated user can bypass the application's "Disallow" file path rules by modifying the request URL. By adding multiple slashes e.g., //private/ to the path, the authorization check fails to match the rule, while the underlying filesystem resolves the path correctly, granting...

8.1CVSS5.6AI score0.00461EPSS
Exploits2References5Affected Software1
OSV
OSV
added 2026/02/10 12:25 a.m.5 views

GHSA-4MH3-H929-W968 File Browser has a Path-Based Access Control Bypass via Multiple Leading Slashes in URL

Summary An authenticated user can bypass the application's "Disallow" file path rules by modifying the request URL. By adding multiple slashes e.g., //private/ to the path, the authorization check fails to match the rule, while the underlying filesystem resolves the path correctly, granting...

8.1CVSS5.6AI score0.00461EPSS
Exploits2References5
NVD
NVD
added 2026/02/09 10:16 p.m.10 views

CVE-2026-25890

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to 2.57.1, an authenticated user can bypass the application's "Disallow" file path rules by modifying the request URL. By adding multiple slashe...

8.1CVSS0.00461EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2026/02/09 9:21 p.m.4 views

CVE-2026-25890

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to 2.57.1, an authenticated user can bypass the application's "Disallow" file path rules by modifying the request URL. By adding multiple slashe...

8.1CVSS5.5AI score0.00461EPSS
Exploits2References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/09 12:0 a.m.6 views

PT-2026-7168

Name of the Vulnerable Software and Affected Versions File Browser versions prior to 2.57.1 Description File Browser offers a file management interface for tasks like uploading, deleting, previewing, renaming, and editing files within a designated directory. Before version 2.57.1, an authenticate...

9.9CVSS5.5AI score0.27661EPSS
Exploits45References122
Github Security Blog
Github Security Blog
added 2026/02/03 7:22 p.m.14 views

HtmlSanitizer has a bypass via template tag

Impact If the template tag is allowed, its contents are not sanitized. The template tag is a special tag that does not usually render its contents, unless the shadowrootmode attribute is set to open or closed. The lack of sanitization of the template tag brings up two bypasses: 1. it is still...

6.3CVSS5.4AI score0.00241EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/02/03 7:22 p.m.3 views

GHSA-J92C-7V7G-GJ3F HtmlSanitizer has a bypass via template tag

Impact If the template tag is allowed, its contents are not sanitized. The template tag is a special tag that does not usually render its contents, unless the shadowrootmode attribute is set to open or closed. The lack of sanitization of the template tag brings up two bypasses: 1. it is still...

6.3CVSS5.4AI score0.00241EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/01/29 9:21 p.m.7 views

CVE-2025-66488

Discourse is an open source discussion platform. A vulnerability present in versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0 affects anyone who uses S3 for uploads. While scripts may be executed, they will only be run in the context of the S3/CDN domain, with no site credentials...

6.1CVSS5.7AI score0.00174EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:21 a.m.4 views

CVE-2021-41087

in-toto-golang is a go implementation of the in-toto framework to protect software supply chain integrity. In affected versions authenticated attackers posing as functionaries i.e., within a trusted set of users for a layout are able to create attestations that may bypass DISALLOW rules in the sa...

6.5CVSS6.7AI score0.00416EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/25 12:34 a.m.5 views

CVE-2024-58335

OpenXRechnungToolbox through 2024-10-05-3.0.0 before 6c50e89 allows XXE because the disallow-doctype-decl feature is not enabled in visualization/VisualizerImpl.java...

5CVSS6.9AI score0.00168EPSS
Exploits0References1
NVD
NVD
added 2025/12/24 6:15 a.m.5 views

CVE-2024-58335

OpenXRechnungToolbox through 2024-10-05-3.0.0 before 6c50e89 allows XXE because the disallow-doctype-decl feature is not enabled in visualization/VisualizerImpl.java...

5CVSS0.00168EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/24 12:0 a.m.26 views

CVE-2024-58335

OpenXRechnungToolbox through 2024-10-05-3.0.0 before 6c50e89 allows XXE because the disallow-doctype-decl feature is not enabled in visualization/VisualizerImpl.java...

5CVSS0.00168EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/24 12:0 a.m.2 views

CVE-2024-58335

OpenXRechnungToolbox through 2024-10-05-3.0.0 before 6c50e89 allows XXE because the disallow-doctype-decl feature is not enabled in visualization/VisualizerImpl.java...

5CVSS6.5AI score0.00168EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.4 views

PT-2025-52869

Name of the Vulnerable Software and Affected Versions OpenXRechnungToolbox versions through 2024-10-05-3.0.0 Description The software contains an XML External Entity XXE issue due to the missing disallow-doctype-decl feature in the visualization/VisualizerImpl.java component. Recommendations Upda...

5CVSS6.7AI score0.00168EPSS
Exploits0References6
Rows per page
Query Builder