26 matches found
EUVD-2025-23460
Malicious code in bioql PyPI...
EUVD-2025-23461
Malicious code in bioql PyPI...
EUVD-2025-23463
Malicious code in bioql PyPI...
XWiki Contrib Mocca Calendar Application 安全漏洞
XWiki Contrib Mocca Calendar Application is an XWiki plugin from XWiki Contrib open source. A security vulnerability exists in XWiki Contrib Mocca Calendar Application versions prior to 9.14, which stems from a remote code execution in the blog application...
CVE-2025-52133
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title upon calendar import...
CVE-2025-52131
The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field...
CVE-2025-52132
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title to the view event page...
CVE-2025-52133
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title upon calendar import...
CVE-2025-52133
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title upon calendar import...
CVE-2025-52132
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title to the view event page...
CVE-2025-52132
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title to the view event page...
CVE-2025-52131
The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field...
CVE-2025-52131
The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field...
CVE-2025-52133
CVE-2025-52133 affects the Mocca Calendar application for XWiki (versions before 2.15). The issue is a cross-site scripting (XSS) vulnerability triggered by a crafted title during calendar import, caused by an XSS in the calendar import header. CVSSv3.1 base score is 6.4 (Medium) with Network att...
XWiki Contrib Mocca Calendar Application 跨站脚本漏洞
XWiki Contrib Mocca Calendar Application is an open source XWiki plugin for XWiki Contrib. A cross-site scripting vulnerability exists in XWiki Contrib Mocca Calendar Application versions prior to 2.15, which stems from cross-site scripting in the background or text color fields...
CVE-2025-52133
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title upon calendar import...
CVE-2025-52133
The Mocca Calendar application before 2.15 for XWiki allows XSS via a title upon calendar import...
PT-2025-31766 · Unknown · Mocca Calendar
Name of the Vulnerable Software and Affected Versions: Mocca Calendar versions prior to 2.15 Description: The Mocca Calendar application is susceptible to a cross-site scripting XSS issue. This occurs through a specially crafted title during calendar import. Recommendations: Update Mocca Calendar...
CVE-2025-52131
The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field...
CVE-2025-52131
The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field...