Lucene search
K

7 matches found

OPENSUSE Linux
OPENSUSE Linux
added 2026/04/21 12:0 a.m.5 views

Security update for python-gi-docgen (moderate)

openSUSE security update: security update for python-gi-docgen ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20497-1 Rating: moderate References: bsc1251961 Cross-References: CVE-2025-11687 CVSS scores: CVE-2025-11687 SUSE : 5.8...

5.8CVSS5.7AI score0.00337EPSS
Exploits0References1
OSV
OSV
added 2026/04/09 2:47 p.m.3 views

OPENSUSE-SU-2026:20497-1 Security update for python-gi-docgen

This update for python-gi-docgen fixes the following issues: - CVE-2025-11687: Fixed reflected DOM XSS bsc1251961...

6.1CVSS5.8AI score0.00337EPSS
Exploits0References2
OSV
OSV
added 2026/04/09 2:40 p.m.8 views

SUSE-SU-2026:21159-1 Security update for python-gi-docgen

This update for python-gi-docgen fixes the following issues: - CVE-2025-11687: Fixed reflected DOM XSS bsc1251961...

6.1CVSS5.7AI score0.00337EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 7:36 p.m.31 views

CVE-2025-11687 Gi-docgen: reflected dom xss in gi-docgen

A flaw was found in the gi-docgen. This vulnerability allows arbitrary JavaScript execution in the context of the page — enabling DOM access, session cookie theft and other client-side attacks — via a crafted URL that supplies a malicious value to the q GET parameter reflected DOM XSS...

6.1CVSS0.00337EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/26 7:36 p.m.9 views

EUVD-2025-206336

A flaw was found in the gi-docgen. This vulnerability allows arbitrary JavaScript execution in the context of the page — enabling DOM access, session cookie theft and other client-side attacks — via a crafted URL that supplies a malicious value to the q GET parameter reflected DOM XSS...

6.1CVSS6AI score0.00337EPSS
Exploits0References3
CVE
CVE
added 2026/01/26 7:36 p.m.23 views

CVE-2025-11687

The CVE-2025-11687 issue affects the gi-docgen library and is confirmed by multiple sources (GHSA advisory, NVD/Red Hat entry, Debian/Amazon Linux advisories). It is a reflected DOM XSS vulnerability where an unescaped q query parameter allows arbitrary JavaScript execution in the page context, e...

6.1CVSS6AI score0.00337EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/01/11 8:32 a.m.4 views

CVE-2023-6632 Happy Addons for Elementor <= 3.9.1.1 - Reflected Cross-Site Scripting

The Happy Addons for Elementor plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via DOM in all versions up to and including 3.9.1.1 versions up to 2.9.1.1 in Happy Addons for Elementor Pro due to insufficient input sanitization and output escaping. This makes it possible for...

6.1CVSS6.9AI score0.00544EPSS
Exploits0References3
Rows per page
Query Builder