71 matches found
EUVD-2017-0021
Malware in sbrugna...
EUVD-2022-0079
Malicious code in bioql PyPI...
EUVD-2024-3386
Malicious code in bioql PyPI...
EUVD-2024-0036
Malicious code in bioql PyPI...
aldryn-django-cms (=3.5.3.2), aleksis (>=1.0.0a4.dev0 <=2023.1.0.dev0) +43 more potentially affected by CVE-2025-48383 via django-select2 (>=4.3.2 <=8.2.4)
django-select2 PYPI version =4.3.2, =1.0.0a4.dev0, =2.0.0, =1.0.0, =2.0.0, =2.1.0, =2.0.0, =0.1.0, =2.0.0, =2.0.0, =2.0.0, =0.1.1, =2.0.0, =2.2.0 and more Source cves: CVE-2025-48383 Source advisory: OSV:GHSA-WJRH-HJ83-3WH7...
CVE-2024-11404
Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in django CMS Association django Filer allows Input Data Manipulation, Stored XSS. This issue affects django Filer: from 3 before 3.3...
CVE-2024-11406
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in django CMS Association django CMS Attributes Fields allows Stored XSS. This issue affects django CMS Attributes Fields: before 4.0...
CVE-2024-11319
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in django CMS Association django-cms allows Cross-Site Scripting XSS. This issue affects django-cms: 3.11.7, 3.11.8, 4.1.2, 4.1.3...
mezzanine 安全漏洞
mezzanine is a Django CMS framework by stephenmcd individual developer. A security vulnerability exists in mezzanine version 6.0.0, which originates from cross-site scripting in the View Entries feature of the Forms module...
Cross-Site Scripting (XSS)
djangocmsattributesfield is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper neutralization of input during web page generation in django CMS Attributes Fields, which allows stored XSS."...
Cross-site Scripting (XSS)
Overview djangocms-attributes-field is an Adds attributes to Django models. Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper sanitization of form Attributes fields in the Django CMS admin panel. An attacker can exploit this vulnerability through the...
GHSA-VXCV-4XVF-PC22 django CMS Attributes Field Cross-site Scripting
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in django CMS Association django CMS Attributes Fields allows Stored XSS.This issue affects django CMS Attributes Fields: before 4.0...
django-cms-qe (>=1.4.3 <=3.7.2), django-crunch (=0.1.12) +8 more potentially affected by CVE-2024-11406 via djangocms-attributes-field (>=0.3.0 <=3.0.0)
djangocms-attributes-field PYPI version =0.3.0, =1.4.3, =0.6.2, =7.0.4, =1.0.0, =1.0.0, =2.0.0, =2.28.1, =0.1.0, =1.0.0b3 - taccsite-cms =3.6.0a0 Source cves: CVE-2024-11406 Source advisory: OSV:GHSA-VXCV-4XVF-PC22...
CVE-2024-11404
Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in django CMS Association django Filer allows Input Data Manipulation, Stored XSS. This issue affects django Filer: from 3 before 3.3...
CVE-2024-11406
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in django CMS Association django CMS Attributes Fields allows Stored XSS. This issue affects django CMS Attributes Fields: before 4.0...
CVE-2024-11406
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in django CMS Association django CMS Attributes Fields allows Stored XSS.This issue affects django CMS Attributes Fields: before 4.0...
CVE-2024-11406
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in django CMS Association django CMS Attributes Fields allows Stored XSS. This issue affects django CMS Attributes Fields: before 4.0...
CVE-2024-11406 Stored XSS in django CMS Attributes Fields
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in django CMS Association django CMS Attributes Fields allows Stored XSS. This issue affects django CMS Attributes Fields: before 4.0...
CVE-2024-11406
The CVE-2024-11406 issue affects django CMS Attributes Field (before 4.0). The vulnerability is a Stored XSS in the Django CMS Attributes Fields, caused by improper input neutralization during web page generation in the admin/admin-related handling of Attributes fields. Impact is stored XSS, with...
CVE-2024-11406 Stored XSS in django CMS Attributes Fields
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in django CMS Association django CMS Attributes Fields allows Stored XSS. This issue affects django CMS Attributes Fields: before 4.0...