Lucene search
+L

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-5818

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.01503EPSS
Exploits1References4
OSV
OSV
added 2022/05/24 4:49 p.m.58 views

GHSA-XM59-JVXM-CP3V mxGraph vulnerable to cross-site scripting in color field

mxGraph through 4.0.0, related to the draw.io Diagrams plugin before 8.3.14 for Confluence and other products, is vulnerable to cross-site scripting. draw.io Diagrams allows the creation and editing of draw.io-based diagrams in Confluence. Among other things, it allows to set the background color...

6.1CVSS6.1AI score0.01503EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/05/24 4:49 p.m.25 views

mxGraph vulnerable to cross-site scripting in color field

mxGraph through 4.0.0, related to the draw.io Diagrams plugin before 8.3.14 for Confluence and other products, is vulnerable to cross-site scripting. draw.io Diagrams allows the creation and editing of draw.io-based diagrams in Confluence. Among other things, it allows to set the background color...

6.1CVSS6.7AI score0.01503EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2019/07/01 3:15 p.m.32 views

CVE-2019-13127

An issue was discovered in mxGraph through 4.0.0, related to the "draw.io Diagrams" plugin before 8.3.14 for Confluence and other products. Improper input validation/sanitization of a color field leads to XSS. This is associated with javascript/examples/grapheditor/www/js/Dialogs.js...

6.1CVSS6.2AI score0.01503EPSS
Exploits1References3
OSV
OSV
added 2019/07/01 3:15 p.m.15 views

CVE-2019-13127

An issue was discovered in mxGraph through 4.0.0, related to the "draw.io Diagrams" plugin before 8.3.14 for Confluence and other products. Improper input validation/sanitization of a color field leads to XSS. This is associated with javascript/examples/grapheditor/www/js/Dialogs.js...

6.1CVSS6.7AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2019/07/01 3:15 p.m.1 views

CVE-2019-13127

An issue was discovered in mxGraph through 4.0.0, related to the "draw.io Diagrams" plugin before 8.3.14 for Confluence and other products. Improper input validation/sanitization of a color field leads to XSS. This is associated with javascript/examples/grapheditor/www/js/Dialogs.js...

6.1CVSS5.5AI score0.01503EPSS
Exploits1References4
Prion
Prion
added 2019/07/01 3:15 p.m.17 views

Input validation

An issue was discovered in mxGraph through 4.0.0, related to the "draw.io Diagrams" plugin before 8.3.14 for Confluence and other products. Improper input validation/sanitization of a color field leads to XSS. This is associated with javascript/examples/grapheditor/www/js/Dialogs.js...

4.3CVSS6.2AI score0.01503EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2019/07/01 2:33 p.m.27 views

CVE-2019-13127

An issue was discovered in mxGraph through 4.0.0, related to the "draw.io Diagrams" plugin before 8.3.14 for Confluence and other products. Improper input validation/sanitization of a color field leads to XSS. This is associated with javascript/examples/grapheditor/www/js/Dialogs.js...

6.2AI score0.01503EPSS
Exploits1References3
CVE
CVE
added 2019/07/01 2:33 p.m.78 views

CVE-2019-13127

mxGraph (up to version 4.0.0) and the draw.io Diagrams plugin for Confluence are vulnerable to cross-site scripting due to improper validation/sanitization of a color field in javascript/examples/grapheditor/www/js/Dialogs.js. Multiple sources (NVD, OSV, GHSA, CNVD, etc.) describe an XSS conditio...

6.1CVSS6.1AI score0.01503EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder