Lucene search
+L

7 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5451

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00556EPSS
Exploits0References5
github
github
added 2022/05/24 5:0 p.m.16 views

Magento 2 Community Edition XSS Vulnerability

A stored cross-site scripting XSS vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can inject arbitrary JavaScript code into code field of an inventory source...

5.4CVSS5.6AI score0.00556EPSS
Exploits0References5Affected Software1
osv
osv
added 2022/05/24 5:0 p.m.16 views

GHSA-VX7M-V8V2-FHWM Magento 2 Community Edition XSS Vulnerability

A stored cross-site scripting XSS vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can inject arbitrary JavaScript code into code field of an inventory source...

5.4CVSS5.3AI score0.00556EPSS
Exploits0References5
nvd
nvd
added 2019/11/06 12:15 a.m.13 views

CVE-2019-8131

A stored cross-site scripting XSS vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can inject arbitrary JavaScript code into code field of an inventory source...

5.4CVSS5.2AI score0.00556EPSS
Exploits0References1
prion
prion
added 2019/11/06 12:15 a.m.12 views

Cross site scripting

A stored cross-site scripting XSS vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can inject arbitrary JavaScript code into code field of an inventory source...

3.5CVSS5.1AI score0.00556EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2019/11/05 11:7 p.m.15 views

CVE-2019-8131

A stored cross-site scripting XSS vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can inject arbitrary JavaScript code into code field of an inventory source...

5.4AI score0.00556EPSS
Exploits0References1
friendsofphp
friendsofphp
added 2019/10/08 12:0 a.m.19 views

PRODSECBUG-2423: Cross-Site Scripting via inventory source

More info at https://magento.com/security/patches/magento-2.3.3-and-2.2.10-security-update...

5.4CVSS7.2AI score0.00556EPSS
Exploits0Affected Software1
Rows per page
Query Builder