Lucene search
K

6680 matches found

NVD
NVD
added 2026/03/11 6:16 p.m.4 views

CVE-2026-31857

Craft is a content management system CMS. Prior to 5.9.9 and 4.17.4, a Remote Code Execution vulnerability exists in the Craft CMS 5 conditions system. The BaseElementSelectConditionRule::getElementIds method passes user-controlled string input through renderObjectTemplate -- an unsandboxed Twig...

9.3CVSS0.00665EPSS
Exploits0References2
CVE
CVE
added 2026/03/11 5:37 p.m.11 views

CVE-2026-31859

CVE-2026-31859 (Craft CMS) : Craft CMS is vulnerable to a reflective XSS via incomplete return URL sanitization. The fix for CVE-2025-35939 added a strip_tags() call in src/web/User.php to sanitize return URLs, but strip_tags() only strips HTML tags and does not validate URL schemes. Payloads suc...

6.9CVSS5.8AI score0.00185EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/03/11 4:33 p.m.5 views

DRUPAL-CONTRIB-2026-028

The module and certain submodules AI Automators, AI Translate, AI API Explorer, AI Content Suggestions provide the ability to use an LLM to generate HTML or Markdown and preview it in a browser. Under certain circumstances, rendering of this HTML can lead to exposing secret communications in the...

7.5CVSS5.8AI score0.00232EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 4:16 p.m.3 views

CVE-2026-0602

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to disclose metadata from private issues, merge requests, epics, milestones, or commits due to improper filtering...

4.3CVSS0.00243EPSS
Exploits0References3
OSV
OSV
added 2026/03/11 4:16 p.m.3 views

UBUNTU-CVE-2026-0602

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to disclose metadata from private issues, merge requests, epics, milestones, or commits due to improper filtering...

4.3CVSS5.7AI score0.00243EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/11 4:6 p.m.5 views

CVE-2026-30235

OpenProject is an open-source, web-based project management software. Prior to 17.2.0, this vulnerability occurs due to improper validation of OpenProject’s Markdown rendering, specifically in the hyperlink handling. This allows an attacker to inject malicious hyperlink payloads that perform DOM...

6.5CVSS5.8AI score0.00322EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/03/11 4:6 p.m.6 views

EUVD-2026-11235

OpenProject is an open-source, web-based project management software. Prior to 17.2.0, this vulnerability occurs due to improper validation of OpenProject’s Markdown rendering, specifically in the hyperlink handling. This allows an attacker to inject malicious hyperlink payloads that perform DOM...

6.5CVSS5.8AI score0.00322EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/11 4:6 p.m.4 views

CVE-2026-30235 Business Logic Error on OpenProject through hyperlinks in markdown using DOM clobbering

OpenProject is an open-source, web-based project management software. Prior to 17.2.0, this vulnerability occurs due to improper validation of OpenProject’s Markdown rendering, specifically in the hyperlink handling. This allows an attacker to inject malicious hyperlink payloads that perform DOM...

6.5CVSS5.8AI score0.00322EPSS
Exploits0References1
CVE
CVE
added 2026/03/11 4:5 p.m.57 views

CVE-2026-0602

GitLab CE/EE contains a vulnerability (CVE-2026-0602) where an authenticated user could disclose metadata from private issues, merge requests, epics, milestones, or commits due to improper filtering in the snippet rendering process. Affected versions are 15.6 up to but not including 18.7.6, 18.7....

4.3CVSS5.7AI score0.00243EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/03/11 4:5 p.m.26 views

CVE-2026-0602 Authentication Bypass Using an Alternate Path or Channel in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to disclose metadata from private issues, merge requests, epics, milestones, or commits due to improper filtering...

4.3CVSS0.00243EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/11 4:5 p.m.3 views

CVE-2026-0602

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to disclose metadata from private issues, merge requests, epics, milestones, or commits due to improper filtering...

4.3CVSS5.7AI score0.00243EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/11 4:5 p.m.0 views

CVE-2026-0602 Authentication Bypass Using an Alternate Path or Channel in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to disclose metadata from private issues, merge requests, epics, milestones, or commits due to improper filtering...

4.3CVSS5.7AI score0.00243EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/03/11 4:5 p.m.4 views

CVE-2026-0602

Removed by vendor...

4.3CVSS5.8AI score0.00243EPSS
Exploits0
OSV
OSV
added 2026/03/11 4:5 p.m.4 views

CVE-2026-0602 Authentication Bypass Using an Alternate Path or Channel in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to disclose metadata from private issues, merge requests, epics, milestones, or commits due to improper filtering...

4.3CVSS5.8AI score0.00243EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/03/11 2:56 p.m.5 views

Craft CMS Vulnerable to Stored XSS via User Group Name in User Permissions Page

Summary A stored XSS vulnerability exists in the User Permissions page. The User Group name is rendered without proper HTML escaping in the permissions section, allowing an attacker to execute arbitrary JavaScript when another user views or edits a user's permissions. !NOTE This is a separate...

6AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/11 2:56 p.m.6 views

CraftCMS has an RCE vulnerability via relational conditionals in the control panel

A Remote Code Execution vulnerability exists in the Craft CMS 5 conditions system. The BaseElementSelectConditionRule::getElementIds method passes user-controlled string input through renderObjectTemplate -- an unsandboxed Twig rendering function with escaping disabled. Any authenticated Control...

9.3CVSS5.9AI score0.00665EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/11 2:54 p.m.6 views

Umbraco has Stored XSS in UFM Rendering Pipeline via Permissive DOMPurify Attribute Filtering

Description An authenticated backoffice user with access to Settings can inject malicious HTML into property type descriptions. Due to an overly permissive attributeNameCheck configuration /.+/ in the UFM DOMPurify instance, event handler attributes such as onclick and onload, when used within...

6.7CVSS5.8AI score0.0026EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/11 2:54 p.m.3 views

GHSA-VRQC-59MW-QQG7 Umbraco has Stored XSS in UFM Rendering Pipeline via Permissive DOMPurify Attribute Filtering

Description An authenticated backoffice user with access to Settings can inject malicious HTML into property type descriptions. Due to an overly permissive attributeNameCheck configuration /.+/ in the UFM DOMPurify instance, event handler attributes such as onclick and onload, when used within...

6.7CVSS5.8AI score0.0026EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/11 9:25 a.m.3 views

CVE-2026-3492 Gravity Forms <= 2.9.28.1 - Authenticated (Subscriber+) Stored Cross-Site Scripting via Form Title

The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 2.9.28.1. This is due to a compound failure involving missing authorization on the createfromtemplate AJAX endpoint allowing any authenticated user to create forms, insufficie...

6.4CVSS5.9AI score0.00203EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/11 6:31 a.m.6 views

EUVD-2026-11099

The weForms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the REST API entry submission endpoint in all versions up to, and including, 1.6.27. This is due to inconsistent input sanitization between the frontend AJAX handler and the REST API endpoint. When entries are...

6.4CVSS5.9AI score0.00214EPSS
Exploits0References8
Rows per page
Query Builder