Lucene search
K

5 matches found

Snyk
Snyk
added 2026/07/03 10:19 p.m.7 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS in the extensionsRequired field of glTF files processed by the 3D file viewer. An attacker can execute arbitrary JavaScript code in the context of another user by uploading a crafted glTF file containing malicio...

8.7CVSS5.9AI score0.00336EPSS
Exploits0References2
Snyk
Snyk
added 2026/07/03 10:19 p.m.6 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS in the extensionsRequired field of glTF files processed by the 3D file viewer. An attacker can execute arbitrary JavaScript code in the context of another user by uploading a crafted glTF file containing malicio...

8.7CVSS5.9AI score0.00336EPSS
Exploits0References2
OSV
OSV
added 2023/08/23 6:15 a.m.5 views

CVE-2023-41100

An issue was discovered in the hcaptcha aka hCaptcha for EXT:form extension before 2.1.2 for TYPO3. It fails to check that the required captcha field is submitted in the form data. allowing a remote user to bypass the CAPTCHA check...

5.3CVSS5.8AI score0.00515EPSS
Exploits0References1
Snyk
Snyk
added 2020/10/01 1:5 p.m.6 views

Arbitrary Code Execution

Overview jsen is a JSON-Schema validator built for speed Affected versions of this package are vulnerable to Arbitrary Code Execution. If an attacker can control the schema file, it could run arbitrary JavaScript code on the victim machine. In the module description and README file there is no...

7.2CVSS7.1AI score0.02026EPSS
Exploits1References2
Microsoft KB
Microsoft KB
added 2020/04/14 7:0 a.m.34 views

Service Update 0.14 for Microsoft Dynamics 365 9.0

None None...

6.1CVSS6.6AI score0.01791EPSS
Exploits0
Rows per page
Query Builder