Lucene search
K

208 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-0187

Malware in sbrugna...

5.4CVSS5.4AI score0.00536EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-30680

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00294EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-24696

Malicious code in bioql PyPI...

5.4CVSS6.4AI score0.0017EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-3226

Malicious code in bioql PyPI...

9.3CVSS9AI score0.00741EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/09/24 6:31 p.m.7 views

CVE-2025-59573

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in CozyThemes Cozy Blocks cozy-addons allows Code Injection.This issue affects Cozy Blocks: from n/a through = 2.1.29...

5.3CVSS5.9AI score0.00224EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:16 p.m.9 views

CVE-2025-59573

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in CozyThemes Cozy Blocks cozy-addons allows Code Injection.This issue affects Cozy Blocks: from n/a through = 2.1.29...

5.3CVSS0.00224EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.5 views

WordPress plugin Cozy Blocks 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

5.3CVSS6.7AI score0.00224EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/14 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-30359

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - webpack-dev-server allows users to use webpack with a development server that provides live reloading. Prior to version 5.2.1, webpack-dev-server users' source...

5.9CVSS7.3AI score0.00427EPSS
Exploits1References2
Microsoft CVE
Microsoft CVE
added 2025/09/03 9:19 p.m.8 views

A mutation XSS affects users calling bleach.clean with all of: svg or math in the allowed tags p or br in allowed tags style, title, noscript, script, textarea, noframes, iframe, or xmp in allowed tags the keyword argument strip_comments=False Note: none of the above tags are in the default allowed tags and strip_comments defaults to True.

...

6.1CVSS7AI score0.00483EPSS
Exploits1
NVD
NVD
added 2025/08/14 11:15 a.m.15 views

CVE-2025-54698

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in RadiusTheme Classified Listing classified-listing allows Code Injection.This issue affects Classified Listing: from n/a through = 5.0.0...

5.4CVSS0.0017EPSS
Exploits0References1
CNVD
CNVD
added 2025/07/30 12:0 a.m.4 views

WordPress Taeggie Feed Cross-Site Scripting Vulnerability

WordPress Taeggie Feed is a plugin on WordPress that is mainly used to integrate social media content into a website, supporting dynamic syndication on platforms like Facebook, Instagram, Twitter and LinkedIn. WordPress Taeggie Feed suffers from a cross-site scripting vulnerability that originate...

6.4CVSS6.5AI score0.0037EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/24 12:0 a.m.5 views

WordPress plugin Taeggie Feed 跨站脚本漏洞

WordPress Taeggie Feed is a plugin on WordPress that is mainly used to integrate social media content into a website, supporting dynamic syndication on platforms like Facebook, Instagram, Twitter and LinkedIn. WordPress Taeggie Feed suffers from a cross-site scripting vulnerability that originate...

6.4CVSS6.4AI score0.0037EPSS
Exploits0References3
OSV
OSV
added 2025/06/04 9:9 p.m.3 views

GHSA-4V9V-HFQ4-RM2V webpack-dev-server users' source code may be stolen when they access a malicious web site

Summary Source code may be stolen when you access a malicious web site. Details Because the request for classic script by a script tag is not subject to same origin policy, an attacker can inject in their site and run the script. Note that the attacker has to know the port and the output entrypoi...

5.3CVSS7AI score0.00427EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 2:41 a.m.8 views

CVE-2023-23735

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Brainstorm Force Spectra allows Code Injection.This issue affects Spectra: from n/a through 2.3.0...

6.1CVSS6.5AI score0.00283EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:53 p.m.8 views

CVE-2022-38771

The mobile application in Transtek Mojodat FAM Fixed Asset Management 2.4.6 allows remote attackers to send SCRIPT tags as injected input to the API request...

9.8CVSS7.1AI score0.01017EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:36 p.m.5 views

CVE-2021-35959

In Plone 5.0 through 5.2.4, Editors are vulnerable to XSS in the folder contents view, if a Contributor has created a folder with a SCRIPT tag in the description field...

5.4CVSS6.1AI score0.00536EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/10 12:0 a.m.9 views

PT-2025-15953 · Tutor Lms · Tutor Lms

Name of the Vulnerable Software and Affected Versions: Tutor LMS versions n/d through 3.4.0 Description: The issue is related to an improper neutralization of script-related HTML tags in a web page, which can lead to a basic Cross-Site Scripting XSS attack. This allows an attacker to inject...

4.3CVSS8.3AI score0.00232EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/03/28 12:0 a.m.6 views

WordPress plugin Better Section Navigation Widget 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

6.5CVSS7.9AI score0.00199EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/24 12:0 a.m.8 views

PT-2025-5498 · Unknown · Listamester

Name of the Vulnerable Software and Affected Versions: Listamester versions through 2.3.4 Description: The issue is related to improper neutralization of script-related HTML tags in a web page, which allows for Stored XSS attacks. This means an attacker can inject malicious scripts into the web...

6.5CVSS5.7AI score0.00334EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.3 views

Fortinet FortiPortal 安全漏洞

Fortinet FortiPortal is an advanced, feature-rich hosted security analysis and management support tool for Fortinet's FortiGate, FortiWiFi and FortiAP product lines, available as a virtual machine for MSPs. A cross-site scripting vulnerability exists in Fortinet FortiPortal that stems from an...

4.8CVSS6.7AI score0.00346EPSS
Exploits0References1
Rows per page
Query Builder