Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:26 a.m.6 views

CVE-2021-28833

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

6.1CVSS5.4AI score0.00774EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:25 a.m.7 views

CVE-2021-28796

Increments Qiita::Markdown before 0.33.0 allows XSS in transformers...

6.1CVSS5.7AI score0.00774EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-1689

Malware in sbrugna...

6.1CVSS6.1AI score0.00774EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-1664

Malware in sbrugna...

6.1CVSS6.1AI score0.00739EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2021/08/02 5:23 p.m.50 views

Cross-Site Scripting in Qiita-Markdown

Increments Qiita-Markdown before 0.33.0 allows XSS in transformers...

6.1CVSS5.8AI score0.00774EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2021/08/02 5:23 p.m.12 views

GHSA-F2C9-5JQW-3XH3 Cross-Site Scripting in Qiita-Markdown

Increments Qiita-Markdown before 0.33.0 allows XSS in transformers...

6.1CVSS5.8AI score0.00774EPSS
Exploits0References6
OSV
OSV
added 2021/08/02 5:22 p.m.16 views

GHSA-9P29-94HP-8RVC qiita-markdown Cross-site Scripting vulnerability

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

6.1CVSS5.7AI score0.00739EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2021/08/02 5:22 p.m.49 views

qiita-markdown Cross-site Scripting vulnerability

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

6.1CVSS3.3AI score0.00739EPSS
Exploits0References6Affected Software1
RubySec
RubySec
added 2021/08/02 12:0 a.m.12 views

Cross-Site Scripting in Qiita::Markdown

Increments Qiita::Markdown before 0.33.0 allows XSS in transformers...

6.1CVSS6.3AI score0.00774EPSS
Exploits0References1Affected Software1
RubySec
RubySec
added 2021/08/02 12:0 a.m.14 views

XSS in qiita-markdown

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

6.1CVSS3.8AI score0.00774EPSS
Exploits0References1Affected Software1
Snyk
Snyk
added 2021/06/21 3:30 p.m.2 views

Cross-site Scripting (XSS)

Overview qiita-markdown is a Qiita-specified markdown processor. Affected versions of this package are vulnerable to Cross-site Scripting XSS via a crafted gist link, a different vulnerability than CVE-2021-28796. Details Cross-site scripting or XSS is a code vulnerability that occurs when an...

6.1CVSS5.4AI score0.00774EPSS
Exploits0References2
OSV
OSV
added 2021/06/21 1:15 p.m.10 views

CVE-2021-28833

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

6.1CVSS5.6AI score
Exploits0References2
NVD
NVD
added 2021/06/21 1:15 p.m.13 views

CVE-2021-28833

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

6.1CVSS0.00739EPSS
Exploits0References2
Prion
Prion
added 2021/06/21 1:15 p.m.15 views

Design/Logic Flaw

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

4.3CVSS5.8AI score0.00774EPSS
Exploits0References2
CVE
CVE
added 2021/06/21 12:18 p.m.59 views

CVE-2021-28833

Qiita-Markdown (Ruby gem) up to versions before 0.34.0 is vulnerable to cross-site scripting via crafted gist links (CVE-2021-28833). Red Hat advisories and RubySec confirm this as a separate issue from CVE-2021-28796 and describe the same general class of XSS in the transformer/gist handling pat...

6.1CVSS5.7AI score0.00739EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/06/21 12:18 p.m.25 views

CVE-2021-28833

Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796...

6AI score0.00739EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/06/21 12:0 a.m.3 views

Getty104 Qiita::Markdown 跨站脚本漏洞

Getty104 qiita-markdown is Getty104 an open source application . Provides an editor function. A cross-site scripting vulnerability exists in versions prior to Qiita::Markdown 0.34.0, which stems from the program allowing XSS via a crafted gist link...

6.1CVSS5.8AI score0.00739EPSS
Exploits0References2
Snyk
Snyk
added 2021/03/19 2:38 p.m.2 views

Cross-site Scripting (XSS)

Overview qiita-markdown is a Qiita-specified markdown processor. Affected versions of this package are vulnerable to Cross-site Scripting XSS. Increments Qiita::Markdown allows XSS in transformers. Details Cross-site scripting or XSS is a code vulnerability that occurs when an attacker “injects” ...

6.1CVSS5.4AI score0.00774EPSS
Exploits0References2
Veracode
Veracode
added 2021/03/19 1:30 a.m.10 views

Cross-site Scripting (XSS)

qiita-markdown is vulnerable to cross-site scripting XSS. The vulnerability exists through the value of port in url where it allows strings like javascript://docs.google.com:80/%0d%0aalertdocument.domain to be executed...

6.1CVSS2.3AI score0.00774EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/03/18 4:15 p.m.11 views

CVE-2021-28796

Increments Qiita::Markdown before 0.33.0 allows XSS in transformers...

6.1CVSS5.9AI score
Exploits0References2
Rows per page
Query Builder