EUVD-2022-5258

Malicious code in bioql PyPI...

EUVD-2022-4345

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-27920

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0. CVE-2022-27920...

Exposure of Sensitive Information to an Unauthorized Actor in Jenkins

jenkins before versions 2.44, 2.32.2 is vulnerable to an information disclosure vulnerability in search suggestions SECURITY-385. The autocomplete feature on the search box discloses the names of the views in its suggestions, including the ones for which the current user does not have access to...

Improper Neutralization of Input During Web Page Generation in Jenkins

jenkins before versions 2.44, 2.32.2 is vulnerable to a persisted cross-site scripting in search suggestions due to improperly escaping users with less-than and greater-than characters in their names SECURITY-388...

GHSA-V222-W2MW-XJC6 Exposure of Sensitive Information to an Unauthorized Actor in Jenkins

jenkins before versions 2.44, 2.32.2 is vulnerable to an information disclosure vulnerability in search suggestions SECURITY-385. The autocomplete feature on the search box discloses the names of the views in its suggestions, including the ones for which the current user does not have access to...

GHSA-JFF5-55XJ-4JCQ Improper Neutralization of Input During Web Page Generation in Jenkins

jenkins before versions 2.44, 2.32.2 is vulnerable to a persisted cross-site scripting in search suggestions due to improperly escaping users with less-than and greater-than characters in their names SECURITY-388...

CVE-2022-27920

libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0...

CVE-2022-27920

libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0...

Cross site scripting

libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0...

UBUNTU-CVE-2022-27920

libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0...

CVE-2022-27920

The CVE-2022-27920 entry affects libkiwix (versions 10.0.0 and 10.0.1) with an XSS flaw in the built‑in webserver through the search suggestions URL parameter. The root cause involves improper handling of that URL parameter, enabling cross-site scripting. The vulnerability is fixed in version 10....

CVE-2022-27920

libkiwix 10.0.0 and 10.0.1 allows XSS in the built-in webserver functionality via the search suggestions URL parameter. This is fixed in 10.1.0...

CVE-2021-29963

Summary: CVE-2021-29963 affects Firefox for Android, where address bar search suggestions in private browsing mode reused session data from normal mode. The issue is limited to Android; other OSes are unaffected. Affected product: Firefox for Android prior to version 89. Root cause: private mode ...

CVE-2021-29963

Address bar search suggestions in private browsing mode were re-using session data from normal mode. This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox 89...

CVE-2021-29963

Address bar search suggestions in private browsing mode were re-using session data from normal mode. This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox 89...

Mozilla Firefox < 89.0

The version of Firefox installed on the remote Windows host is prior to 89.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2021-23 advisory. - Mozilla developers Christian Holler, Anny Gakhokidze, Alexandru Michis, Gabriele Svelto reported memory safety bugs...

Microsoft Windows 10: Search suggestions in Address bar (Edge)

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winedgesearchsuggaddrbar.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Configure search suggestions in Address bar Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net...

Information disclosure

jenkins before versions 2.44, 2.32.2 is vulnerable to an information disclosure vulnerability in search suggestions SECURITY-385. The autocomplete feature on the search box discloses the names of the views in its suggestions, including the ones for which the current user does not have access to...

CVE-2017-2609

jenkins before versions 2.44, 2.32.2 is vulnerable to an information disclosure vulnerability in search suggestions SECURITY-385. The autocomplete feature on the search box discloses the names of the views in its suggestions, including the ones for which the current user does not have access to...