Lucene search
K

4 matches found

Cvelist
Cvelist
added 2023/12/04 11:3 p.m.40 views

CVE-2023-49293 Cross-site Scripting in `server.transformIndexHtml` via URL payload in vite

Vite is a website frontend framework. When Vite's HTML transformation is invoked manually via server.transformIndexHtml, the original request URL is passed in unmodified, and the html being transformed contains inline module scripts ..., it is possible to inject arbitrary HTML into the transforme...

6.1CVSS6.3AI score0.00997EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2021/04/19 12:0 a.m.15 views

Fedora 33 : seamonkey (2021-2761b54dff)

The remote Fedora 33 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-2761b54dff advisory. - Fix updating and support of legacy javascript extensions. ---- Update to 2.53.7 Enable support for module scripts. To turn it off, toggle...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/04/16 12:0 a.m.11 views

Fedora 32 : seamonkey (2021-4b0a8b8629)

The remote Fedora 32 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-4b0a8b8629 advisory. - Appled all the changes from the upstream 2.53.7.1 update. Fixed tab opening in background and tab choosing on a tab close. ---- Fix updating and support of...

5.6AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/05/30 2:57 p.m.4 views

httpd: privilege escalation from modules scripts

A flaw was found in Apache where code executing in a less-privileged child process or thread could execute arbitrary code with the privilege of the parent process usually root. An attacker having access to run arbitrary scripts on the web server PHP, CGI etc could use this flaw to run code on the...

7.8CVSS7AI score0.65005EPSS
Exploits8References7
Rows per page
Query Builder