17 matches found
EUVD-2025-18929
Malicious code in bioql PyPI...
@lblod/ember-rdfa-editor (>=12.4.0-dev.1f5a5b71099288ff594f4d5de652b8af64917693 <=13.7.0) potentially affected by unknown CVE via ember-headless-form (=1.1.1)
ember-headless-form NPM version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on ember-headless-form and may be impacted: - @lblod/ember-rdfa-editor =12.4.0-dev.1f5a5b71099288ff594f4d5de652b8af64917693, =13.7.0 Source cves: unknown CVE Source...
@lblod/ember-rdfa-editor (>=12.4.0-dev.1f5a5b71099288ff594f4d5de652b8af64917693 <=13.7.0) potentially affected by unknown CVE via ember-headless-form-yup (=1.0.0)
ember-headless-form-yup NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on ember-headless-form-yup and may be impacted: - @lblod/ember-rdfa-editor =12.4.0-dev.1f5a5b71099288ff594f4d5de652b8af64917693, =13.7.0 Source cves: unknown CVE...
@lblod/ember-rdfa-editor (>=12.4.0-dev.1f5a5b71099288ff594f4d5de652b8af64917693 <=13.7.0) potentially affected by unknown CVE via ember-headless-form (=1.1.1)
ember-headless-form NPM version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on ember-headless-form and may be impacted: - @lblod/ember-rdfa-editor =12.4.0-dev.1f5a5b71099288ff594f4d5de652b8af64917693, =13.7.0 Source cves: unknown CVE Source...
CVE-2025-50020
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nitin Yawalkar RDFa Breadcrumb rdfa-breadcrumb allows Stored XSS.This issue affects RDFa Breadcrumb: from n/a through = 2.3...
CVE-2025-50020
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nitin Yawalkar RDFa Breadcrumb rdfa-breadcrumb allows Stored XSS.This issue affects RDFa Breadcrumb: from n/a through = 2.3...
CVE-2025-50020
CVE-2025-50020 affects the WordPress plugin RDFa Breadcrumb (versions up to 2.3). Root cause: improper neutralization of input during web page generation, enabling stored XSS. Public details show no patch status in the provided documents; remediation guidance from PT-Security indicates updating t...
CVE-2025-50020 WordPress RDFa Breadcrumb plugin <= 2.3 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nitin Yawalkar RDFa Breadcrumb allows Stored XSS. This issue affects RDFa Breadcrumb: from n/a through 2.3...
CVE-2025-50020 WordPress RDFa Breadcrumb plugin <= 2.3 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nitin Yawalkar RDFa Breadcrumb rdfa-breadcrumb allows Stored XSS.This issue affects RDFa Breadcrumb: from n/a through = 2.3...
PT-2025-26377 · Unknown · Nitin Yawalkar Rdfa Breadcrumb
Name of the Vulnerable Software and Affected Versions: Nitin Yawalkar RDFa Breadcrumb versions 2.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables attackers to injec...
WordPress RDFa Breadcrumb plugin <= 2.3 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin RDFa Breadcrumb versions = 2.3...
CVE-2022-25312
An XML external entity XXE injection vulnerability was discovered in the Any23 RDFa XSLTStylesheet extractor and is known to affect Any23 versions 2.7. XML external entity injection also known as XXE is a web security vulnerability that allows an attacker to interfere with an application's...
XML External Entity (XXE) Injection
org.apache.any23:apache-any23-core is vulnerable to XML external entity XXE injection attacks. An attacker is able to view files and to interact with any back-end or external systems that the application itself can access due to the vulnerable RDFa XSLTStylesheet extractor component...
CVE-2022-25312
An XML external entity XXE injection vulnerability was discovered in the Any23 RDFa XSLTStylesheet extractor and is known to affect Any23 versions 2.7. XML external entity injection also known as XXE is a web security vulnerability that allows an attacker to interfere with an application's...
CVE-2022-25312
An XML external entity XXE injection vulnerability was discovered in the Any23 RDFa XSLTStylesheet extractor and is known to affect Any23 versions 2.7. XML external entity injection also known as XXE is a web security vulnerability that allows an attacker to interfere with an application's...
CVE-2022-25312 An XML external entity (XXE) injection vulnerability exists in the Apache Any23 RDFa XSLTStylesheet extractor
An XML external entity XXE injection vulnerability was discovered in the Any23 RDFa XSLTStylesheet extractor and is known to affect Any23 versions 2.7. XML external entity injection also known as XXE is a web security vulnerability that allows an attacker to interfere with an application's...
CVE-2022-25312
The CVE-2022-25312 vulnerability concerns the Apache Any23 project, specifically the RDFa XSLTStylesheet extractor. Affected versions are Any23