17 matches found
Fedora 44 : cockpit (2026-ac9d9c87c8)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-ac9d9c87c8 advisory. Automatic update for cockpit-362-1.fc44. Changelog for cockpit Wed May 20 2026 Packit - 362-1 - Bug fixes and translation updates - Fix arbitrary code...
CVE-2026-27656
creationtimestamp| type| source ---|---|--- 2026-03-26 03:00:14+00:00| seen| https://nvd.nist.gov/vuln/detail/CVE-2026-27656...
CVE-2025-6461
creationtimestamp| type| source ---|---|--- 2026-01-25 05:04:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3md7xe5r2ga2n...
CVE-2017-18891
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. It allows Phishing because an error page can have a link...
CVE-2018-8011
creationtimestamp| type| source ---|---|--- 2026-01-07 21:03:18+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mbuej6xtvb2t...
Exploit for CVE-2025-40019
CVE-2025-40019-Essiv A PoC for CVE-2025-40019 in ESSIV module...
EUVD-2017-9981
Malware in sbrugna...
CVE-2025-5547
creationtimestamp| type| source ---|---|--- 2025-06-04 00:30:17+00:00| published-proof-of-concept| Telegram/p21E4CuUCeNoo1Q5zMvHMTRKpdsC1uH2Jv5gkJnfkynA4 2025-06-04 01:23:58+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqqnb5msgn52...
CVE-2017-18913
An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. XSS can occur via a link on an error page...
CVE-2017-18921
An issue was discovered in Mattermost Server before 3.6.0 and 3.5.2. XSS can occur via a link on an error page...
CVE-2023-48476
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
CVE-2023-48451
Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting DOM-based XSS vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the...
Pimcore vulnerable to Cross Site Scripting in Documents Link Editable
Impact An attacker can use XSS to send a malicious script to any user through Document Page Link Editable - Advanced - Attributes Patches Update to version 10.5.18 or apply this patch manually https://github.com/pimcore/pimcore/pull/14500.patch Workarounds Apply...
WordPress plugin Themify Builder 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
UBUNTU-CVE-2020-35478
MediaWiki before 1.35.1 allows XSS via BlockLogFormatter.php. MediaWiki:blanknamespace potentially can be output as raw HTML with SCRIPT tags via LogFormatter::makePageLink. This affects MediaWiki 1.33.0 and later...
CVE-2019-18859
Digi AnywhereUSB 14 allows XSS via a link for the Digi Page...
PT-2020-9993 · Digi · Digi Anywhereusb
Name of the Vulnerable Software and Affected Versions: Digi AnywhereUSB version 14 Description: The issue allows for cross-site scripting XSS via a link for the Digi Page. Recommendations: For Digi AnywhereUSB version 14, update to a version that includes a fix for this issue, or as a temporary...