CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-46103

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00086EPSS

Exploits1References1

Tenable Nessus•added 2025/08/30 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2021-23648

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting XSS due to improper sanitization in sanitizeUrl function. CVE-2021-23648...

6.1CVSS7.3AI score0.00126EPSS

Exploits1References2

OSV•added 2023/09/11 6:15 p.m.•10 views

CVE-2023-41609

An open redirect vulnerability in the sanitizeurl parameter of CouchCMS v2.3 allows attackers to redirect a victim user to an arbitrary web site via a crafted URL...

6.1CVSS6.8AI score

Exploits0References1

NVD•added 2023/05/15 1:15 p.m.•11 views

CVE-2023-2009

Plugin does not sanitize and escape the URL field in the Pretty Url WordPress plugin through 1.5.4 settings, which could allow high-privilege users to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS4.8AI score0.0083EPSS

Exploits2References1

OSV•added 2023/02/24 6:15 a.m.•1 views

DEBIAN-CVE-2022-48345

sanitize-url aka @braintree/sanitize-url before 6.0.2 allows XSS via HTML entities...

6.1CVSS5.9AI score0.00585EPSS

Exploits0References1

OSV•added 2023/02/24 6:15 a.m.•0 views

UBUNTU-CVE-2022-48345

sanitize-url aka @braintree/sanitize-url before 6.0.2 allows XSS via HTML entities...

6.1CVSS7.3AI score0.00585EPSS

Exploits0References3

RedHat Linux•added 2022/11/15 10:31 a.m.•3 views

sanitize-url: XSS due to improper sanitization in sanitizeUrl function

A flaw was found in sanitize-url due to improper sanitization in the sanitizeUrl function. This issue causes vulnerability to Cross-site Scripting in sanitize-url...

6.1CVSS7.3AI score0.00126EPSS

Exploits1References6

RedHat Linux•added 2022/11/08 9:34 a.m.•2 views

sanitize-url: XSS due to improper sanitization in sanitizeUrl function

A flaw was found in sanitize-url due to improper sanitization in the sanitizeUrl function. This issue causes vulnerability to Cross-site Scripting in sanitize-url...

6.1CVSS7.3AI score0.00126EPSS

Exploits1References6

OSV•added 2022/03/16 4:15 p.m.•0 views

UBUNTU-CVE-2021-23648

The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting XSS due to improper sanitization in sanitizeUrl function...

6.1CVSS6.9AI score0.00126EPSS

Exploits1References3

Positive Technologies•added 2022/02/22 12:0 a.m.•1 views

PT-2022-9421 · Npm +4 · @Braintree/Sanitize-Url +4

Name of the Vulnerable Software and Affected Versions: @braintree/sanitize-url versions prior to 6.0.0 Description: The issue is related to Cross-site Scripting XSS due to improper sanitization in the sanitizeUrl function. This allows for potential XSS attacks. Recommendations: For versions prior...

8.8CVSS8AI score0.01869EPSS

Exploits5References113

Snyk•added 2022/01/13 4:13 p.m.•3 views

Cross-site Scripting (XSS)

Overview @braintree/sanitize-url is an A url sanitizer Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper sanitization in sanitizeUrl function. PoC: js const sanitizeUrl = require"@braintree/sanitize-url".sanitizeUrl forconst vector of...

6.1CVSS5.2AI score0.00126EPSS

Exploits1References2

Hacker One•added 2021/11/02 10:49 p.m.•40 views

U.S. Dept Of Defense: Reflected XSS

Description: Hi i found a XSS at a new IP Address ssl points to ███hostname https://███████/WebPuff5.4/Login?signIn=Sign%20In&password=g00dPa%24%24w0rD&url=login.jsp%27%22%26%25%3Cacx%3E%3CScRiPt%20%3Ealert9868%3C/ScRiPt%3E&username=tMtFQiRt References https://owasp.org/www-community/attacks/xss/...

0.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by