CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/05/13 12:29 a.m.•5 views

CVE-2025-47828

Lumi H5P-Nodejs-library before 9.3.3 omits a sanitizeHtml call for plain text strings...

6.4CVSS6.9AI score0.00172EPSS

Exploits0References1

NVD•added 2025/05/11 3:15 a.m.•10 views

CVE-2025-47828

Lumi H5P-Nodejs-library before 9.3.3 omits a sanitizeHtml call for plain text strings...

6.4CVSS0.00172EPSS

Exploits0References2

CVE•added 2025/05/11 12:0 a.m.•49 views

CVE-2025-47828

CVE-2025-47828 affects Lumi H5P-Nodejs-library before 9.3.3. The root cause is omission of sanitizeHtml for plain text strings, enabling potential Cross-Site Scripting (XSS) risks. Impact is limited to confidentiality and integrity with no reported availability impact; attack vector is network, w...

6.4CVSS7AI score0.00172EPSS

Exploits0References2

Positive Technologies•added 2025/05/11 12:0 a.m.•4 views

PT-2025-20649 · Unknown · Lumi H5P-Nodejs-Library

Name of the Vulnerable Software and Affected Versions: Lumi H5P-Nodejs-library versions prior to 9.3.3 Description: The issue is related to the omission of a sanitizeHtml call for plain text strings. This could potentially lead to security issues, although specific details about the estimated...

6.4CVSS6.3AI score0.00172EPSS

Exploits0References10