Lucene search
K

4 matches found

NVD
NVD
added 2025/02/25 8:15 p.m.20 views

CVE-2025-27110

Libmodsecurity is one component of the ModSecurity v3 project. The library codebase serves as an interface to ModSecurity Connectors taking in web traffic and applying traditional ModSecurity processing. A bug that exists only in Libmodsecurity3 version 3.0.13 means that, in 3.0.13, Libmodsecurit...

7.9CVSS0.00465EPSS
Exploits1References2
Veracode
Veracode
added 2025/02/11 7:15 a.m.8 views

Cross-Site Scripting (XSS)

@nuxtjs/mdc is vulnerable to cross-site scripting XSS. The vulnerability is due to a deny-list approach in URL parsing that fails to properly filter encoded HTML entities, allowing an attacker to bypass security checks and execute arbitrary JavaScript...

9.3CVSS9AI score0.0066EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2019/03/24 6:29 p.m.14 views

CVE-2019-10010

Cross-site scripting XSS vulnerability in the PHP League CommonMark library before 0.18.3 allows remote attackers to insert unsafe links into HTML by using double-encoded HTML entities that are not properly escaped during rendering, a different vulnerability than CVE-2018-20583...

6.1CVSS5.8AI score
Exploits0References2
Cvelist
Cvelist
added 2019/03/24 5:58 p.m.41 views

CVE-2019-10010

Cross-site scripting XSS vulnerability in the PHP League CommonMark library before 0.18.3 allows remote attackers to insert unsafe links into HTML by using double-encoded HTML entities that are not properly escaped during rendering, a different vulnerability than CVE-2018-20583...

6AI score0.0105EPSS
Exploits1References2
Rows per page
Query Builder