34 matches found
EUVD-2012-1069
Malware in sbrugna...
EUVD-2012-1072
Malware in sbrugna...
EUVD-2025-22862
Malicious code in bioql PyPI...
EUVD-2025-22861
Malicious code in bioql PyPI...
EUVD-2025-2770
Malicious code in bioql PyPI...
CVE-2025-27800
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. The Admin dashboard offered the functionality to add gadgets to...
CVE-2025-27802
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. RTE properties text fields, which could be used in the "Edit"...
CVE-2025-27801
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. ContentReference properties, which could be used in the "Edit"...
CVE-2025-27801
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. ContentReference properties, which could be used in the "Edit"...
CVE-2025-27802
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. RTE properties text fields, which could be used in the "Edit"...
CVE-2025-27802
CVE-2025-27802: Stored XSS in Optimizely Episerver CMS (EPiServer.CMS.Core/UI) via Rich Text Editor fields in the Edit/Preview flow. An authenticated user with WebEditor role could inject JavaScript that runs when a page is previewed. Affected: Episerver CMS 11.x (<11.21.4 core with UI <11....
CVE-2025-27802 Stored Cross-Site Scripting in Episerver Content Management System (CMS) Edit Preview
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. RTE properties text fields, which could be used in the "Edit"...
CVE-2025-27802 Stored Cross-Site Scripting in Episerver Content Management System (CMS) Edit Preview
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. RTE properties text fields, which could be used in the "Edit"...
CVE-2025-27801 Stored Cross-Site Scripting in Episerver Content Management System (CMS) Media Selection Preview
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. ContentReference properties, which could be used in the "Edit"...
CVE-2025-27801
CVE-2025-27801 is a Stored XSS vulnerability in Optimizely Episerver CMS (EPiServer.CMS.Core/UI). Affected: EPiServer.CMS.Core <11.21.4 with UI <11.37.5 (11.x) and Core <12.22.1 with UI
CVE-2025-27801 Stored Cross-Site Scripting in Episerver Content Management System (CMS) Media Selection Preview
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. ContentReference properties, which could be used in the "Edit"...
CVE-2025-27800 Stored Cross-Site Scripting in Episerver Content Management System (CMS) Admin Dashboard
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. The Admin dashboard offered the functionality to add gadgets to...
CVE-2025-27800 Stored Cross-Site Scripting in Episerver Content Management System (CMS) Admin Dashboard
The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site Scripting XSS vulnerabilities. This allowed an authenticated attacker to execute malicious JavaScript code in the victim's browser. The Admin dashboard offered the functionality to add gadgets to...
PT-2025-31059 · Optimizely · Episerver Cms
Name of the Vulnerable Software and Affected Versions: Episerver CMS versions prior to 11.21.4 and prior to 11.37.5 Episerver CMS versions prior to 12.22.1 and prior to 11.37.3 Description: The Episerver Content Management System CMS by Optimizely was affected by multiple Stored Cross-Site...
PT-2025-31057 · Optimizely · Episerver Cms +2
Name of the Vulnerable Software and Affected Versions: Episerver CMS by Optimizely versions prior to 11.21.4 and prior to 11.37.5 Episerver CMS by Optimizely versions prior to 12.22.1 and prior to 11.37.3 Description: The Episerver Content Management System CMS by Optimizely was affected by...