CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2011-0020

Malware in sbrugna...

3.5CVSS6.2AI score0.00375EPSS

Exploits0References13

Github Security Blog•added 2018/07/23 9:1 p.m.•27 views

Plone Cross-site Scripting vulnerability

Cross-site scripting XSS vulnerability in the safehtml filter in Products.PortalTransforms in Plone 2.1 through 4.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2010-2422...

3.5CVSS5AI score0.00375EPSS

Exploits0References5Affected Software1

Veracode•added 2017/01/03 6:14 a.m.•12 views

Persistent Cross-site Scripting (XSS)

Products.PortalTransforms is vulnerable to persistent cross-site scripting XSS attack. It allows an attacker to use markup that bypasses Plone's safehtml filter to insert and save arbitrary HTML with malicious content...

3.5CVSS5.3AI score0.00375EPSS

Exploits0References9Affected Software1

PyPA•added 2014/09/30 2:55 p.m.•4 views

PYSEC-2014-44

Cross-site scripting XSS vulnerability in safehtml.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users with permissions to edit content to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.9AI score0.00152EPSS

Exploits0References4Affected Software1

PyPA•added 2011/06/06 7:55 p.m.•4 views

PYSEC-2011-15

4.3CVSS6AI score0.00392EPSS

Exploits0References9Affected Software1

Prion•added 2011/06/06 7:55 p.m.•14 views

Cross site scripting

3.5CVSS5.5AI score0.00392EPSS

Exploits0References8Affected Software1

OSV•added 2011/06/06 7:55 p.m.•22 views

PYSEC-2011-15

3.5CVSS3.2AI score0.00375EPSS

Exploits0References9

CVE•added 2011/06/06 7:0 p.m.•82 views

CVE-2011-1949

CVE-2011-1949 is a Plone XSS issue in the PortalTransforms safe_html filter (Plone 2.1–4.1). The vulnerability allows remote authenticated users to inject arbitrary script or HTML via unspecified vectors, caused by the safe_html transform path. This is described as a different vulnerability from ...

3.5CVSS5.2AI score0.00375EPSS

Exploits0References8Affected Software1

NVD•added 2010/06/24 12:17 p.m.•14 views

CVE-2010-2422

Cross-site scripting XSS vulnerability in PortalTransforms in Plone 2.1 through 3.3.4 before hotfix 20100612 allows remote attackers to inject arbitrary web script or HTML via the safehtml transform...

4.3CVSS5.5AI score0.00392EPSS

Exploits0References3

CVE•added 2010/06/23 5:13 p.m.•82 views

CVE-2010-2422

CVE-2010-2422 describes a Cross-site scripting (XSS) vulnerability in PortalTransforms’ safe_html transform in Plone versions 2.1 through 3.3.4, fixed by hotfix 20100612. The underlying issue allows remote attackers to inject arbitrary web script or HTML via the safe_html transform. Exploitation ...

4.3CVSS5.6AI score0.00392EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by