9 matches found
EUVD-2026-19889
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Wikimedia Foundation MediaWiki - ProofreadPage Extension allows XSS Targeting Non-Script Elements.This issue affects...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improperly set page extension mapping, which could lead to a kernel panic...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a page extension mapping not being set correctly in the btrfscontexpand function, which could lead to an...
kernel: mm/page_table_check: fix crash on ZONE_DEVICE
A vulnerability was found in the Linux kernel's mm/pagetablecheck component, specifically related to ZONEDEVICE pages. When page-table-check is enabled, attempting to map DAX memory can lead to a kernel crash due to invalid checks on these pages, which do not allocate pageext...
Amasty Blog commenting feature cross-site scripting vulnerability
Amasty Blog is a web page extension of Amasty Inc. A cross-site scripting vulnerability exists in the commenting functionality of Amasty Blog Pro version 2.10.3, which can be exploited by attackers to inject cross-site code and launch XSS attacks...
CVE-2021-30601
Use after free in Extensions API in Google Chrome prior to 92.0.4515.159 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page...
TYPO3 Recommend Page Extension Cross-Site Scripting Vulnerability
TYPO3 is a free and open source content management system framework CMS/CMF maintained by the Swiss TYPO3 Association. A cross-site scripting vulnerability exists in the TYPO3 Recommend Page extension due to the program failing to properly filter user-supplied input. An attacker could use the...
TYPO3 CMS 2.0.3 Cross Site Scripting Vulnerability
TYPO3 CMS versions 2.0.3 and below suffer from a cross site scripting vulnerability. title: Cross Site Scripting XSS product: Recommend Page extension for TYPO3 CMS pbrecommendpage vulnerable version: =2.0.3 fixed version: - CVE number: - impact: Medium homepage: https://typo3.org/ found:...
cPanel 9.9.1 -R3 Front Page Extension Installation Information Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/11456/info It is reported that cPanel is susceptible to an information disclosure vulnerability in its function to enable Front Page extensions. This vulnerability reportedly allows attackers to gain access to the content...