Lucene search
K

735 matches found

Github Security Blog
Github Security Blog
added 2026/05/19 8:8 p.m.19 views

Dasel: Index-out-of-range panic in dasel selector lexer on trailing backslash in quoted string

Summary dasel's selector lexer panics with an index-out-of-range error when tokenizing a quoted string that ends with a trailing backslash e.g., "\ or '. A 2-byte input causes an immediate process crash via Go runtime panic. I confirmed the issue on v3.3.1 fba653c7f248aff10f2b89fca93929b64707dfc8...

5.8AI score0.00052EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/19 9:25 a.m.51 views

CVE-2026-46725 Remote Code Execution in extension "Content Element Selector" (ceselector)

The extension passes an attacker-controlled cookie directly to PHP's unserialize without safely processing the input. A remote, unauthenticated attacker can supply a crafted serialized payload to trigger PHP Object Injection, leading to Remote Code Execution on the TYPO3 server. Exploitation...

9.2CVSS0.02306EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/05/19 9:25 a.m.11 views

CVE-2026-46725 Remote Code Execution in extension "Content Element Selector" (ceselector)

The extension passes an attacker-controlled cookie directly to PHP's unserialize without safely processing the input. A remote, unauthenticated attacker can supply a crafted serialized payload to trigger PHP Object Injection, leading to Remote Code Execution on the TYPO3 server. Exploitation...

9.2CVSS5.8AI score0.02306EPSS
Exploits1References1
CVE
CVE
added 2026/05/19 9:25 a.m.27 views

CVE-2026-46725

The CVE-2026-46725 vulnerability affects the TYPO3 extension Content Element Selector (ceselector). The issue arises when an attacker-controlled cookie is passed directly to PHP unserialize() without safe input handling, enabling PHP Object Injection that can lead to Remote Code Execution on the ...

9.2CVSS5.8AI score0.02306EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/05/19 12:0 a.m.13 views

PT-2026-42044

Name of the Vulnerable Software and Affected Versions dasel versions 3.0.0 through 3.3.1 Description The selector lexer contains a flaw that causes a process crash via a Go runtime panic when tokenizing a quoted string that ends with a trailing backslash. This occurs because the escape sequence...

7.5CVSS5.8AI score0.00052EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/19 12:0 a.m.17 views

TYPO3 Extension Content Element Selector 代码问题漏洞

TYPO3 Extension Content Element Selector is an open-source extension for TYPO3 that allows users to select content elements. This extension has a code vulnerability that stems from the extension directly passing cookies controlled by the attacker to the PHP’s unserialize function without proper...

9.2CVSS6.1AI score0.02306EPSS
Exploits1References1
OSV
OSV
added 2026/05/18 2:23 p.m.8 views

JLSEC-2026-507

LibSass before 3.6.3 allows a NULL pointer dereference in Sass::Parser::parseCompoundSelector in parserselectors.cpp...

6.5CVSS7AI score0.0125EPSS
Exploits1References2
OSV
OSV
added 2026/05/18 2:23 p.m.12 views

JLSEC-2026-506

LibSass before 3.6.3 allows a heap-based buffer over-read in Sass::weaveParents in astselweave.cpp...

6.5CVSS5.9AI score0.01053EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/05/16 12:0 a.m.21 views

VulnCheck KEV: CVE-2022-28290

Reflective Cross-Site Scripting vulnerability in WordPress Country Selector Plugin Version 1.6.5. The XSS payload executes whenever the user tries to access the country selector page with the specified payload as a part of the HTTP request...

6.1CVSS6.4AI score0.01409EPSS
In wildExploits2References27
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/12 12:59 a.m.14 views

Malicious code in git-branch-selector (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dab170d586455af0816362e715de0907ddaa19adb87c68ef59255139322dde69 The package git-branch-selector was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References6
OSV
OSV
added 2026/05/12 12:59 a.m.8 views

MAL-2026-3503 Malicious code in git-branch-selector (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dab170d586455af0816362e715de0907ddaa19adb87c68ef59255139322dde69 The package git-branch-selector was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.8 views

PT-2026-39875

Name of the Vulnerable Software and Affected Versions Mantis Bug Tracker MantisBT versions prior to 2.28.2 Description A Stored Cross-Site Scripting XSS issue exists when cloning an issue from a project other than the current one. The clone form 'bug report page.php' prepends the source project...

8.6CVSS5.9AI score0.00444EPSS
Exploits0References6
OSV
OSV
added 2026/05/08 6:19 p.m.13 views

GHSA-R8CJ-3554-33MR justhtml introduces denial-of-service hardening

Summary justhtml 1.18.0 fixes multiple low-severity denial-of-service hardening issues in CSS selector handling and linkification. These issues are availability concerns. They do not allow script execution, data disclosure, or sanitizer bypass by themselves. Affected versions - justhtml 1.18.0...

5.8AI score
Exploits0References2
OSV
OSV
added 2026/05/06 6:24 p.m.5 views

GHSA-C4RQ-3M3G-8WGX Nokogiri CSS selector tokenizer has regular expression backtracking

Summary Nokogiri's CSS selector tokenizer contains regular expressions whose construction may result in exponential regex backtracking on adversarial selectors. Three ReDoS vectors are addressed in this release: 1. String-literal tokenization on certain unterminated quoted-string input. 2...

7.5CVSS5.8AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/06 6:24 p.m.18 views

Nokogiri CSS selector tokenizer has regular expression backtracking

Summary Nokogiri's CSS selector tokenizer contains regular expressions whose construction may result in exponential regex backtracking on adversarial selectors. Three ReDoS vectors are addressed in this release: 1. String-literal tokenization on certain unterminated quoted-string input. 2...

5.8AI score
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/05 3:37 a.m.6 views

CVE-2026-4665 WP Carousel Free <= 2.7.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'data-caption' Attribute

The WP Carousel Free plugin for WordPress is vulnerable to Stored Cross-Site Scripting via crafted fancybox data-caption attributes in all versions up to, and including, 2.7.10. This is due to the fancybox-config.js script reading the carousel container's id attribute directly from the DOM to...

6.4CVSS6AI score0.00281EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/28 11:29 a.m.5 views

CVE-2026-41043

A flaw was found in Apache ActiveMQ and Apache ActiveMQ Web. An authenticated attacker can exploit a Cross-Site Scripting XSS vulnerability by injecting malicious HTML into a Java Message Service JMS selector field and overriding the content type to HTML. This allows the attacker to display...

6.5CVSS5.7AI score0.0056EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/04/24 12:30 p.m.9 views

Apache ActiveMQ Vulnerable to Cross-site Scripting

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Apache ActiveMQ, Apache ActiveMQ Web. An authenticated attacker can show malicious content when browsing queues in the web console by overriding the content type to be HTML instead of XML and by injecting...

6.5CVSS5.8AI score0.0056EPSS
Exploits0References4Affected Software3
Snyk
Snyk
added 2026/04/24 11:18 a.m.7 views

Cross-site Scripting (XSS)

Overview org.apache.activemq:activemq-web is a message broker and JMS 1.1 implementation. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the JMS selector field in the web console. An attacker can display malicious content in the browser by injecting HTML and...

6.5CVSS5.5AI score0.0056EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/24 10:16 a.m.35 views

CVE-2026-41043 Apache ActiveMQ, Apache ActiveMQ Web: ActiveMQ Web Console - XSS vulnerability when browsing queues

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Apache ActiveMQ, Apache ActiveMQ Web. An authenticated attacker can show malicious content when browsing queues in the web console by overriding the content type to be HTML instead of XML and by injecting...

0.0056EPSS
Exploits0References1
Rows per page
Query Builder