Lucene search
K

16 matches found

Snyk
Snyk
added 6 days ago4 views

Cross-site Scripting (XSS)

Overview wagtail is an open source content management system built on Django. Affected versions of this package are vulnerable to Cross-site Scripting XSS in the dynamic image URL generator view within the admin interface. An attacker with a limited-permission editor account can execute arbitrary...

8.5CVSS5.8AI score0.00203EPSS
Exploits0References2
NVD
NVD
added 6 days ago7 views

CVE-2026-54263

Wagtail is an open source content management system built on Django. In versions prior to 7.0.8, 7.3.3 and 7.4.2, reflected cross-site scripting XSS vulnerability exists on the dynamic image URL generator view within the Wagtail admin interface. A user with a limited-permission editor account for...

7.3CVSS0.00203EPSS
Exploits0References1
Cvelist
Cvelist
added 6 days ago37 views

CVE-2026-54263 Wagtail: Reflected XSS in dynamic image URL generator view

Wagtail is an open source content management system built on Django. In versions prior to 7.0.8, 7.3.3 and 7.4.2, reflected cross-site scripting XSS vulnerability exists on the dynamic image URL generator view within the Wagtail admin interface. A user with a limited-permission editor account for...

7.3CVSS0.00203EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 6 days ago4 views

CVE-2026-54263

Wagtail is an open source content management system built on Django. In versions prior to 7.0.8, 7.3.3 and 7.4.2, reflected cross-site scripting XSS vulnerability exists on the dynamic image URL generator view within the Wagtail admin interface. A user with a limited-permission editor account for...

7.3CVSS5.5AI score0.00203EPSS
Exploits0References2Affected Software1
CVE
CVE
added 6 days ago12 views

CVE-2026-54263

Wagtail (Django-based CMS) has a reflected XSS in the dynamic image URL generator view within the admin. A limited-permission editor could craft a URL that, when seen by a higher-privilege user, could act with that user’s credentials. Affected versions: < 7.0.8, < 7.3.3,

7.3CVSS5.5AI score0.00203EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/14 12:0 a.m.8 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to the handling of the null pointer, which allows a hacker to trigger a service failure.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the handling of the zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.5AI score0.00254EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/16 12:0 a.m.5 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, which allows attackers to trigger a service failure.

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS5.8AI score0.00459EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.7 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the possibility of an operation going beyond the buffer in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the execution of operations beyond buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created...

7.8CVSS8AI score0.00272EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/25 12:0 a.m.7 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system using a specially crafted file...

7.8CVSS8.2AI score0.02332EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/12 12:0 a.m.6 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the buffer in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.5CVSS6.4AI score0.01832EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/01/28 12:0 a.m.7 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the buffer in memory. This allows attackers to exploit their privileges and gain unauthorized access to protected information.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and gain unauthorized access to protected information...

4.3CVSS6.3AI score0.00303EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/12/07 12:0 a.m.7 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflow attacks, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software is related to buffer overflow attacks. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially crafted PDF file...

7.8CVSS8AI score0.04538EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/12/03 12:0 a.m.6 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the possibility of an operation going beyond the buffer in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the execution of operations beyond buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code on the target system...

7.8CVSS8.1AI score0.02315EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/11/25 12:0 a.m.7 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to the manipulation of the null pointer, allowing attackers to cause service failures.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the handling of a special pointer. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS6.6AI score0.0133EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/11/25 12:0 a.m.4 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the possibility of an operation going beyond the buffer in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the execution of operations beyond buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code on the target system...

7.8CVSS8.1AI score0.01955EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2006/06/07 12:0 a.m.35 views

libgd 2.0.33 infinite loop in GIF decoding ?

Introduction --------------- from http://www.boutell.com/gd/ GD is an open source code library for the dynamic creation of images by programmers. GD is written in C, and "wrappers" are available for Perl, PHP and other languages. GD creates PNG, JPEG and GIF images, among other formats. GD is...

0.2AI score
Exploits0
Rows per page
Query Builder