Lucene search
K

187 matches found

Github Security Blog
Github Security Blog
added 2026/03/05 12:16 a.m.9 views

eml_parser: Path Traversal in Official Example Script Leads to Arbitrary File Write

Summary The official example script examples/recursivelyextractattachments.py contains a path traversal vulnerability that allows arbitrary file write outside the intended output directory. Attachment filenames extracted from parsed emails are directly used to construct output file paths without...

5.5CVSS6.2AI score0.00237EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/03 8:59 p.m.7 views

NocoDB Vulnerable to Stored Cross-Site Scripting via Rich Text Cells

Summary Rich text cell content rendered via v-html without sanitization, enabling stored XSS. Details Rich text in TextArea.vue was parsed by markdown-it with html: true and injected via v-html without DOMPurify. A user with Editor role can inject arbitrary HTML that executes for all viewers...

5.4CVSS6AI score0.00179EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/03/03 8:58 p.m.4 views

GHSA-8VM4-G489-V3W7 NocoDB Vulnerable to Stored Cross-Site Scripting via Comments and Rich Text Cells

Summary User-controlled content in comments and rich text cells was rendered via v-html without sanitization, enabling stored XSS. Details Comments in Comments.vue and rich text in TextArea.vue were parsed by markdown-it with html: true and injected via v-html. The codebase had vue-dompurify-html...

5.3CVSS5.9AI score0.00143EPSS
Exploits0References4
OSV
OSV
added 2026/03/02 7:51 p.m.4 views

GHSA-QXWQ-Q265-HC44 NocoDB Vulnerable to Stored Cross-site Scripting via Rich Text Field

Summary An authenticated user with Editor role can inject arbitrary HTML into Rich Text cells by bypassing the TipTap editor and sending raw HTML via the API. Details The TipTap editor sanitizes HTML client-side, but the backend stores raw HTML without server-side sanitization. The stored content...

5.3CVSS6AI score0.00147EPSS
Exploits0References4
NVD
NVD
added 2026/03/02 5:16 p.m.6 views

CVE-2026-28397

NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, comments rendered via v-html without sanitization enable stored XSS. This issue has been patched in version 0.301.3...

5.4CVSS0.00179EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/02 4:19 p.m.6 views

CVE-2026-28398

NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, user-controlled content in comments and rich text cells was rendered via v-html without sanitization, enabling stored XSS. This issue has been patched in version 0.301.3...

5.4CVSS5.8AI score0.00143EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/02 4:19 p.m.4 views

CVE-2026-28397 NocoDB: Stored Cross-Site Scripting via Comments

NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, comments rendered via v-html without sanitization enable stored XSS. This issue has been patched in version 0.301.3...

5.3CVSS5.8AI score0.00179EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/02/25 10:34 p.m.55 views

Basic FTP has Path Traversal Vulnerability in its downloadToDir() method

The basic-ftp library contains a path traversal vulnerability in the downloadToDir method. A malicious FTP server can send directory listings with filenames containing path traversal sequences ../ that cause files to be written outside the intended download directory. Source-to-Sink Flow 1. SOURC...

9.8CVSS6AI score0.00528EPSS
Exploits2References5Affected Software1
Cvelist
Cvelist
added 2026/02/20 11:14 p.m.25 views

CVE-2026-27147 GetSimple CMS: Stored Cross-Site Scripting (XSS) via SVG File Upload (Authenticated)

GetSimple CMS is a content management system. All versions of GetSimple CMS are vulnerable to XSS through SVG file uploads. Authenticated users can upload SVG files via the administrative upload functionality, but they are not properly sanitized or restricted, allowing an attacker to embed...

6.9CVSS0.00197EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/02/20 1:34 a.m.3 views

CVE-2026-27016 LibreNMS has Stored XSS in Custom OID - unit parameter missing strip_tags()

LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring tool. Versions 24.10.0 through 26.1.1 are vulnerable to Stored XSS via the unit parameter in Custom OID. The Custom OID functionality lacks striptags sanitization while other fields name, oid, datatype are sanitized. The...

5.4CVSS5.4AI score0.00227EPSS
Exploits0References4
CVE
CVE
added 2026/02/18 9:10 p.m.19 views

CVE-2026-27176

MajorDoMo (Major Domestic Module) has a reflected XSS in command.php. The $qry parameter is rendered directly into the HTML page without sanitization via htmlspecialchars(), both in an input field value attribute and in a paragraph element. An attacker can inject arbitrary JavaScript by crafting ...

6.1CVSS5.4AI score0.00449EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2026/02/06 4:41 p.m.5 views

CVE-2026-23738 The Asterisk embedded web server 's /httpstatus page echos user supplied values(cookie and query string) without sanitization

Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, user supplied/control values for Cookies and any GET variable query Parameter are directly interpolated into the HTML of the page using aststrappend. The...

3.5CVSS5.3AI score0.0016EPSS
Exploits0References3
CVE
CVE
added 2026/02/05 4:13 p.m.13 views

CVE-2020-37152

PHP-Fusion 9.03.50 panels.php is vulnerable to cross-site scripting (XSS) via the panel_content POST parameter. The issue arises from insufficient sanitization of user input before rendering in the browser, enabling an attacker to inject arbitrary JavaScript that executes in the context of the af...

6.1CVSS5.5AI score0.00246EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/02 10:54 p.m.8 views

CVE-2026-25144

Talishar is a fan-made Flesh and Blood project. A Stored XSS exists in the chat in-game system. The playerID parameter in SubmitChat.php and is saved without sanitization and executed whenever a user view the current page game. This vulnerability is fixed by 09dd00e5452e3cd998eb1406a88e5b0fa868e6...

5.3CVSS5.3AI score0.00251EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.4 views

PT-2026-5745

Name of the Vulnerable Software and Affected Versions Craft Commerce versions 4.0.0-RC1 through 4.10.0 Craft Commerce versions 5.0.0 through 5.5.1 Description A Stored Cross-Site Scripting XSS issue exists in Craft Commerce through Product Type names. The product type name is not properly sanitiz...

4.8CVSS5.3AI score0.00261EPSS
Exploits1References9
Snyk
Snyk
added 2026/02/01 6:26 a.m.3 views

Cross-site Scripting (XSS)

Overview aiosyslogd is an Asynchronous Syslog server using asyncio, with an optional uvloop integration and SQLite backend. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the dynamic log message highlighter in index.html. An attacker can execute arbitrary...

6.1CVSS5.6AI score
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/01/29 6:16 p.m.5 views

CVE-2025-45160

A HTML injection vulnerability exists in the file upload functionality of Cacti , , into the rendered page. NOTE: Multiple third-parties including the maintainer have stated that they cannot reproduce this issue after 1.2.27...

5.4CVSS5.8AI score0.002EPSS
Exploits1References3
OSV
OSV
added 2026/01/26 12:0 a.m.5 views

CVE-2025-70368

Worklenz version 2.1.5 contains a Stored Cross-Site Scripting XSS vulnerability in the Project Updates feature. An attacker can submit a malicious payload in the Updates text field which is then rendered in the reporting view without proper sanitization. Malicious JavaScript may be executed in a...

5.4CVSS5.6AI score0.00224EPSS
Exploits2References4
OSV
OSV
added 2026/01/20 10:15 p.m.6 views

DEBIAN-CVE-2025-11468

When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not sanitized...

5.7CVSS5.2AI score0.0055EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : cups-filters-1.28.7-17.el9_4 (AXSA:2024-8862:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8862:03 advisory. cups-browsed: cups-browsed binds on UDP INADDRANY:631 trusting any packet from any source cups-filters: libcupsfilters: cfGetPrinterAttributes API...

9.8CVSS7.5AI score0.76959EPSS
Exploits16References4
Rows per page
Query Builder