Lucene search
K

5 matches found

NVD
NVD
added 2026/05/08 4:16 p.m.14 views

CVE-2026-41591

Marko is a declarative, HTML-based language for building web apps. Prior to marko version 5.38.36 and prior to @marko/runtime-tags 6.0.164, when dynamic text is interpolated into a or tag the Marko runtime failed to prevent tag breakout when the closing tag used non-lowercase casing. An attacker...

6.4CVSS0.00195EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/08 3:22 p.m.38 views

CVE-2026-41591 Marko: XSS via case-insensitive script/style closing tag bypass in runtime HTML escaping

Marko is a declarative, HTML-based language for building web apps. Prior to marko version 5.38.36 and prior to @marko/runtime-tags 6.0.164, when dynamic text is interpolated into a or tag the Marko runtime failed to prevent tag breakout when the closing tag used non-lowercase casing. An attacker...

6.4CVSS0.00195EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2015/05/14 3:14 p.m.7 views

JSF: XSS due to insufficient escaping of user-supplied content in outputText tags and EL expressions

It was found that Mojarra JavaServer Faces did not properly escape user-supplied content in certain circumstances. Contents of outputText tags and raw EL expressions that immediately follow script or style elements were not escaped. A remote attacker could use a specially crafted URL to execute...

4.3CVSS7.5AI score0.04715EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/03/31 5:0 p.m.6 views

JSF: XSS due to insufficient escaping of user-supplied content in outputText tags and EL expressions

It was found that Mojarra JavaServer Faces did not properly escape user-supplied content in certain circumstances. Contents of outputText tags and raw EL expressions that immediately follow script or style elements were not escaped. A remote attacker could use a specially crafted URL to execute...

4.3CVSS7.5AI score0.04715EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/07/16 5:12 p.m.7 views

JSF: XSS due to insufficient escaping of user-supplied content in outputText tags and EL expressions

It was found that Mojarra JavaServer Faces did not properly escape user-supplied content in certain circumstances. Contents of outputText tags and raw EL expressions that immediately follow script or style elements were not escaped. A remote attacker could use a specially crafted URL to execute...

4.3CVSS7.5AI score0.04715EPSS
Exploits0References5
Rows per page
Query Builder