Lucene search
K

26 matches found

Github Security Blog
Github Security Blog
added 2022/05/24 7:9 p.m.10 views

Liferay Portal and Liferay DXP Cross-site scripting (XSS) vulnerability in the Frontend JS module

Cross-site scripting XSS vulnerability in the Frontend JS module before version 4.0.18, in Liferay Portal 7.3.4 and earlier, and Liferay DXP 7.0 before fix pack 96, 7.1 before fix pack 20 and 7.2 before fix pack 9, allows remote attackers to inject arbitrary web script or HTML via the title of a...

6.1CVSS6AI score0.0098EPSS
Exploits0References5Affected Software2
CNVD
CNVD
added 2021/07/21 12:0 a.m.20 views

Oracle MySQL Cluster Denial of Service Vulnerability (CNVD-2021-57180)

MySQL Cluster is a write-scalable, real-time, ACID-compatible transactional database. A security vulnerability exists in the Cluster: JS module component in Oracle MySQL Cluster 8.0.25 and earlier. An attacker can exploit this vulnerability to cause a denial of service...

4.3CVSS4.6AI score0.01659EPSS
Exploits0References1
CVE
CVE
added 2021/07/20 10:44 p.m.71 views

CVE-2021-2411

CVE-2021-2411 affects Oracle MySQL Cluster (Cluster: JS module) with affected versions 8.0.25 and earlier. The vulnerability is exploitable by an unauthenticated attacker over network via multiple protocols, leading to partial denial of service of MySQL Cluster. The connected sources confirm the ...

4.3CVSS3.9AI score0.01659EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2021/07/20 12:0 a.m.3 views

Oracle MySQL Cluster 输入验证错误漏洞

MySQL Cluster is a write-scalable, real-time, ACID-compatible transactional database. A security vulnerability exists in the Cluster: JS module component in Oracle MySQL Cluster 8.0.25 and earlier. An attacker can exploit this vulnerability to cause a denial of service...

4.3CVSS8AI score0.01659EPSS
Exploits0References5
NVD
NVD
added 2018/06/04 7:29 p.m.12 views

CVE-2017-16053

fabric-js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01123EPSS
Exploits0References1
Prion
Prion
added 2018/06/04 7:29 p.m.13 views

Code injection

fabric-js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

5CVSS7.4AI score0.01123EPSS
Exploits0References1
Rows per page
Query Builder