Lucene search
K

17 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/15 12:7 a.m.3 views

CVE-2026-40105

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Versions 10.4-rc-1, through 16.10.15, 17.0.0-rc-1, through 17.4.7 and 17.5.0-rc-1 through 17.10.0 contain a reflected cross-site scripting vulnerability XSS in the comparison view between...

6.5CVSS5.8AI score0.00549EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.8 views

XWiki Platform 安全漏洞

The XWiki Platform is an open-source wiki platform used for creating web collaboration applications. Vulnerabilities exist in versions 10.4-rc-1 to 16.10.15, 17.0.0-rc-1 to 17.4.7, and 17.5.0-rc-1 to 17.10.0 of the XWiki Platform. These vulnerabilities stem from a reflection-type cross-site...

6.5CVSS5.7AI score0.00549EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.4 views

PT-2026-32971

Name of the Vulnerable Software and Affected Versions XWiki Platform versions 10.4-rc-1 through 16.10.15 XWiki Platform versions 17.0.0-rc-1 through 17.4.7 XWiki Platform versions 17.5.0-rc-1 through 17.10.0 Description A reflected cross-site scripting XSS issue in the comparison view between pag...

6.5CVSS5.8AI score0.00549EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-0235

Malware in sbrugna...

6.8CVSS6.4AI score0.01273EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-0702

Malware in sbrugna...

6.1CVSS6.1AI score0.02913EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 3:6 p.m.8 views

CVE-2020-11001

In Wagtail before versions 2.8.1 and 2.7.2, a cross-site scripting XSS vulnerability exists on the page revision comparison view within the Wagtail admin interface. A user with a limited-permission editor account for the Wagtail admin could potentially craft a page revision history that, when...

6.8CVSS5.8AI score0.01273EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:41 a.m.8 views

CVE-2019-10087

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the Page Revision History, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about...

6.1CVSS5.9AI score0.02913EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/04/24 12:0 a.m.27 views

FreeBSD : Wagtail -- XSS vulnerability (8d85d600-84a9-11ea-97b9-08002728f74c)

Wagtail release notes : CVE-2020-11001: Possible XSS attack via page revision comparison view This release addresses a cross-site scripting XSS vulnerability on the page revision comparison view within the Wagtail admin interface. A user with a limited-permission editor account for the Wagtail...

6.8CVSS6.1AI score0.01273EPSS
Exploits1References4
OSV
OSV
added 2020/04/14 11:15 p.m.15 views

CVE-2020-11001

In Wagtail before versions 2.8.1 and 2.7.2, a cross-site scripting XSS vulnerability exists on the page revision comparison view within the Wagtail admin interface. A user with a limited-permission editor account for the Wagtail admin could potentially craft a page revision history that, when...

6.8CVSS6.3AI score
Exploits0References3
Prion
Prion
added 2020/04/14 11:15 p.m.11 views

Cross site scripting

In Wagtail before versions 2.8.1 and 2.7.2, a cross-site scripting XSS vulnerability exists on the page revision comparison view within the Wagtail admin interface. A user with a limited-permission editor account for the Wagtail admin could potentially craft a page revision history that, when...

3.5CVSS6.3AI score0.01273EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2020/04/14 11:5 p.m.116 views

CVE-2020-11001

In Wagtail, CVE-2020-11001 is an XSS vulnerability in the page revision comparison view of the admin interface. The issue affects Wagtail versions prior to 2.8.1 and 2.7.2, where a limited-permission editor could craft a revision history that, when viewed by a higher-privilege user, could execute...

6.8CVSS5.9AI score0.01273EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2019/10/11 6:41 p.m.19 views

GHSA-GWFQ-QWMP-X9XG Cross-site scripting in Apache JSPWiki

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the Page Revision History, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about...

6.1CVSS6AI score0.02913EPSS
Exploits0References2
NVD
NVD
added 2019/09/23 3:15 p.m.38 views

CVE-2019-10087

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the Page Revision History, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about...

6.1CVSS6AI score0.02913EPSS
Exploits0References1
OSV
OSV
added 2019/09/23 3:15 p.m.29 views

CVE-2019-10087

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the Page Revision History, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about...

6.1CVSS5.9AI score0.02913EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/09/23 3:15 p.m.69 views

CVE-2019-10087

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the Page Revision History, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about...

6.1CVSS6.3AI score0.02913EPSS
Exploits0References2
Prion
Prion
added 2019/09/23 3:15 p.m.18 views

Information disclosure

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the Page Revision History, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about...

4.3CVSS6AI score0.02913EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/09/23 2:47 p.m.34 views

CVE-2019-10087

On Apache JSPWiki, up to version 2.11.0.M4, a carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki, related to the Page Revision History, which could allow the attacker to execute javascript in the victim's browser and get some sensitive information about...

6AI score0.02913EPSS
Exploits0References1
Rows per page
Query Builder