Lucene search
K

4 matches found

Cvelist
Cvelist
added 2025/05/08 7:27 p.m.54 views

CVE-2025-46812 Trix vulnerable to Cross-site Scripting on copy & paste

Trix is a what-you-see-is-what-you-get rich text editor for everyday writing. Versions prior to 2.1.15 are vulnerable to XSS attacks when pasting malicious code. An attacker could trick a user to copy and paste malicious code that would execute arbitrary JavaScript code within the context of the...

5.1CVSS0.00602EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/09 6:49 p.m.5 views

CVE-2024-53847 Trix vulnerable to Cross-site Scripting on copy & paste

The Trix rich text editor, prior to versions 2.1.9 and 1.3.3, is vulnerable to cross-site scripting XSS + mutation XSS attacks when pasting malicious code. An attacker could trick a user to copy and paste malicious code that would execute arbitrary JavaScript code within the context of the user's...

5.1CVSS5.8AI score0.00444EPSS
Exploits0References2
OSV
OSV
added 2002/12/31 5:0 a.m.7 views

CVE-2002-1747

Vtun 2.5b1 does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on ECB...

7AI score
Exploits0References2
OSV
OSV
added 2002/12/31 5:0 a.m.3 views

DEBIAN-CVE-2002-1755

tinc 1.0pre3 and 1.0pre4 VPN does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on CBC...

5CVSS7AI score0.01096EPSS
Exploits0References1
Rows per page
Query Builder