13 matches found
EUVD-2026-19889
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Wikimedia Foundation MediaWiki - ProofreadPage Extension allows XSS Targeting Non-Script Elements.This issue affects...
CVE-2026-39840
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Wikimedia Foundation Mediawiki - Cargo Extension allows XSS Targeting Non-Script Elements.This issue affects Mediawiki - Cargo Extension: before 3.8.7...
CVE-2026-39840 CSS injection in multiple Cargo display formats
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Wikimedia Foundation Mediawiki - Cargo Extension allows XSS Targeting Non-Script Elements.This issue affects Mediawiki - Cargo Extension: before 3.8.7...
CVE-2026-39838
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Wikimedia Foundation MediaWiki - ProofreadPage Extension allows XSS Targeting Non-Script Elements.This issue affects...
CVE-2026-39838 ProofreadPage improperly sanitizes multiline styles using Sanitizer::checkCSS
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Wikimedia Foundation MediaWiki - ProofreadPage Extension allows XSS Targeting Non-Script Elements. The issue has been remediated on the master branch, and in the release branches for MediaWiki...
PT-2026-30991
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Wikimedia Foundation MediaWiki - ProofreadPage Extension allows XSS Targeting Non-Script Elements.This issue affects...
CVE-2023-23756
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in advcomsys.com oneVote component for Joomla. It allows XSS Targeting Non-Script Elements...
CVE-2023-38045
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in advcomsys.com oneVote component for Joomla. It allows XSS Targeting Non-Script Elements...
CVE-2023-38045
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in advcomsys.com oneVote component for Joomla. It allows XSS Targeting Non-Script Elements...
Cross site scripting
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in advcomsys.com oneVote component for Joomla. It allows XSS Targeting Non-Script Elements...
CVE-2023-38045 Extension - admiror-design-studio.com - XSS in Admiror Gallery component for Joomla 5.0.0-5.2.0
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in advcomsys.com oneVote component for Joomla. It allows XSS Targeting Non-Script Elements...
CVE-2023-23756
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in advcomsys.com oneVote component for Joomla. It allows XSS Targeting Non-Script Elements...
PT-2023-19180 · Joomla · Onevote
Name of the Vulnerable Software and Affected Versions: oneVote component for Joomla affected versions not specified Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. It affects the oneVote component for Joomla,...