CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Veracode•added 2022/12/16 6:24 a.m.•16 views

Cross-Site Scripting (XSS)

collective.task is vulnerable to cross-site scripting. The vulnerability exists in the renderCell function of table.py due to missing escape columns which allows an attacker to inject and execute malicious JavaScript...

6.1CVSS6AI score0.0032EPSS

Exploits0References5Affected Software1

Github Security Blog•added 2022/12/15 9:30 p.m.•18 views

collective.task Cross-site Scripting vulnerability

A vulnerability was found in collective.task up to 3.0.9. It has been classified as problematic. This affects the function renderCell/AssignedGroupColumn of the file src/collective/task/browser/table.py. The manipulation leads to cross site scripting. It is possible to initiate the attack remotel...

6.1CVSS6AI score0.0032EPSS

Exploits0References7Affected Software1

OSV•added 2022/12/15 9:30 p.m.•23 views

GHSA-4R9H-X77W-MFFV collective.task Cross-site Scripting vulnerability

6.1CVSS5.9AI score0.0032EPSS

Exploits0References7

Veracode•added 2022/12/15 2:4 a.m.•19 views

Cross-Site Scripting (XSS)

collective.dms.basecontent is vulnerable to cross-site scripting. The vulnerability exists in the renderCell function of column.py due to missing escape characters which allows an attacker to inject and execute malicious JavaScript...

6.1CVSS6AI score0.00267EPSS

Exploits0References5Affected Software1

CNNVD•added 2022/12/15 12:0 a.m.•1 views

collective.task 跨站脚本漏洞

collective.task is Collective open source a Plone task management tool . A cross-site scripting vulnerability exists in collective.task versions prior to 3.0.9, which stems from the function renderCell/AssignedGroupColumn in the file src/collective/task/browser/table.py, which is manipulated to...

6.1CVSS4.4AI score0.0032EPSS

Exploits0References5

Github Security Blog•added 2022/12/14 3:30 p.m.•17 views

collective.dms.basecontent Cross-site Scripting vulnerability

A vulnerability, which was classified as problematic, has been found in collective.dms.basecontent. This issue affects the function renderCell of the file src/collective/dms/basecontent/browser/column.py. The manipulation leads to cross site scripting. The attack may be initiated remotely...

6.1CVSS6AI score0.00267EPSS

Exploits0References6Affected Software1

OSV•added 2022/12/14 3:30 p.m.•11 views

GHSA-R48C-4VFJ-H426 collective.dms.basecontent Cross-site Scripting vulnerability

6.1CVSS6AI score0.00267EPSS

Exploits0References6

NVD•added 2022/12/14 3:15 p.m.•8 views

CVE-2022-4495

A vulnerability, which was classified as problematic, has been found in collective.dms.basecontent up to 1.6. This issue affects the function renderCell of the file src/collective/dms/basecontent/browser/column.py. The manipulation leads to cross site scripting. The attack may be initiated...

6.1CVSS0.00267EPSS

Exploits0References3

ATTACKERKB•added 2022/12/14 3:15 p.m.•1 views

CVE-2022-4495

6.1CVSS3.5AI score0.00267EPSS

Exploits0References4

OSV•added 2022/12/14 3:15 p.m.•11 views

CVE-2022-4495

6.1CVSS6AI score

Exploits0References3

PyPA•added 2022/12/14 3:15 p.m.•5 views

PYSEC-2022-42989

6.1CVSS6AI score0.00267EPSS

Exploits0References3Affected Software1

Cvelist•added 2022/12/14 12:0 a.m.•11 views

CVE-2022-4495 collective.dms.basecontent column.py renderCell cross site scripting

3.5CVSS6.2AI score0.00267EPSS

Exploits0References3

Positive Technologies•added 2022/12/14 12:0 a.m.•1 views

PT-2022-27349 · Unknown · Collective.Dms.Basecontent

Name of the Vulnerable Software and Affected Versions: collective.dms.basecontent versions up to 1.6 Description: The issue affects the function renderCell of the file src/collective/dms/basecontent/browser/column.py, leading to cross site scripting. The attack may be initiated remotely...

6.1CVSS4.3AI score0.00267EPSS

Exploits0References12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by