CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Github Security Blog•added 2022/05/24 7:6 p.m.•16 views

Plone has stored XSS in folder contents

In Plone 5.0 through 5.2.4, Editors are vulnerable to XSS in the folder contents view, if a Contributor has created a folder with a SCRIPT tag in the description field...

5.4CVSS6.1AI score0.00302EPSS

Exploits0References5Affected Software1

Github Security Blog•added 2022/05/24 5:7 p.m.•20 views

Plone cross site scripting (XSS)

An XSS issue in the title field in Plone 5.0 through 5.2.1 allows users with a certain privilege level to insert JavaScript that will be executed when other users access the site...

5.4CVSS6.2AI score0.00423EPSS

Exploits0References7Affected Software1

NVD•added 2021/06/30 1:15 a.m.•8 views

CVE-2021-35959

In Plone 5.0 through 5.2.4, Editors are vulnerable to XSS in the folder contents view, if a Contributor has created a folder with a SCRIPT tag in the description field...

5.4CVSS0.00302EPSS

Exploits0References2

OSV•added 2021/06/30 1:15 a.m.•17 views

PYSEC-2021-110

In Plone 5.0 through 5.2.4, Editors are vulnerable to XSS in the folder contents view, if a Contributor has created a folder with a SCRIPT tag in the description field...

5.4CVSS2.1AI score0.00302EPSS

Exploits0References2

Cvelist•added 2021/06/30 12:41 a.m.•8 views

CVE-2021-35959

In Plone 5.0 through 5.2.4, Editors are vulnerable to XSS in the folder contents view, if a Contributor has created a folder with a SCRIPT tag in the description field...

5.4AI score0.00302EPSS

Exploits0References2

NVD•added 2020/01/23 9:15 p.m.•8 views

CVE-2020-7937

An XSS issue in the title field in Plone 5.0 through 5.2.1 allows users with a certain privilege level to insert JavaScript that will be executed when other users access the site...

5.4CVSS5.3AI score0.00423EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by