Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-0718

Malware in sbrugna...

6.1CVSS7.2AI score0.01121EPSS
Exploits0References6
OSV
OSV
added 2022/07/22 4:15 p.m.4 views

CVE-2022-2510

Cross-site Scripting XSS vulnerability in "Extension:ExtendedSearch" of Hallo Welt! GmbH BlueSpice allows attacker to inject arbitrary HTML XSS on page "Special:SearchCenter", using the search term in the URL...

6.1CVSS5.9AI score0.0039EPSS
Exploits0References1
OSV
OSV
added 2021/10/11 8:15 a.m.1 views

DEBIAN-CVE-2021-41798

MediaWiki before 1.36.2 allows XSS. Month related MediaWiki messages are not escaped before being used on the Special:Search results page...

6.1CVSS5.8AI score0.01302EPSS
Exploits1References1
OSV
OSV
added 2021/10/11 8:15 a.m.2 views

UBUNTU-CVE-2021-41798

MediaWiki before 1.36.2 allows XSS. Month related MediaWiki messages are not escaped before being used on the Special:Search results page...

6.1CVSS6AI score0.01302EPSS
Exploits1References4
Veracode
Veracode
added 2021/10/03 1:51 p.m.23 views

Cross-site Scripting (XSS)

mediawiki/core is vulnerable to cross-site scripting. An attacker can inject and execute malicious javascript through the $date variable in the render function of FullSearchResultWidget.php as it does not properly escape the month-related MediaWiki messages before being used on the Special: Searc...

6.1CVSS2.6AI score0.01302EPSS
Exploits1References11Affected Software2
Positive Technologies
Positive Technologies
added 2021/10/01 12:0 a.m.4 views

PT-2021-23411 · Mediawiki +1 · Mediawiki +1

Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.36.2 Description: The issue allows for XSS due to month-related MediaWiki messages not being escaped before being used on the Special:Search results page. Recommendations: For versions prior to 1.36.2, update to...

8.8CVSS6AI score0.01943EPSS
Exploits6References68
OSV
OSV
added 2018/04/13 4:29 p.m.2 views

UBUNTU-CVE-2017-0364

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where Special:Search allows redirects to any interwiki link...

6.1CVSS6.9AI score0.01121EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2015/09/08 12:0 a.m.4 views

The vulnerability of the Firefox OS operating system allows a hacker to inject arbitrary HTML code.

The vulnerability of the Gaia Search app for the Firefox OS operating system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary HTML code through a special search request executed after the browser...

4.3CVSS5.7AI score0.00806EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder