CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

97 matches found

OSV•added 2026/04/08 7:15 p.m.•1 views

GHSA-X3HR-CP7X-44R2 CI4MS has stored XSS via srcdoc attribute bypass in Google Maps iframe setting

Summary The Google Maps iframe setting cMap field in compInfosPost sanitizes input using striptags with an allowlist and regex-based removal of on\w+ event handlers. However, the srcdoc attribute is not an event handler and passes all filters. An attacker with admin settings access can inject an...

5.5CVSS5.9AI score0.00235EPSS

Exploits0References4

EUVD•added 2026/04/08 7:15 p.m.•2 views

EUVD-2026-20483

CI4MS has stored XSS via srcdoc attribute bypass in Google Maps iframe setting...

5.5CVSS5.9AI score0.00235EPSS

Exploits0References3

Snyk•added 2026/04/08 7:15 p.m.•0 views

Cross-site Scripting (XSS)

Overview ci4-cms-erp/ci4ms is a composer create-project ci4-cms-erp/ci4ms Affected versions of this package are vulnerable to Cross-site Scripting XSS in the compInfosPost process. An attacker can execute arbitrary JavaScript in the context of the parent page by injecting an payload containing...

5.5CVSS5.8AI score0.00235EPSS

Exploits0References2

Github Security Blog•added 2026/04/08 7:15 p.m.•5 views

CI4MS has stored XSS via srcdoc attribute bypass in Google Maps iframe setting

5.5CVSS6AI score0.00235EPSS

Exploits0References4Affected Software1

NVD•added 2026/04/08 3:16 p.m.•3 views

CVE-2026-39390

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to 0.31.4.0, the Google Maps iframe setting cMap field in compInfosPost sanitizes input using striptags with an allowlist and regex-based removal of...

5.5CVSS0.00235EPSS

Exploits0References1

Cvelist•added 2026/04/08 2:29 p.m.•18 views

CVE-2026-39390 CI4MS has Stored XSS via srcdoc attribute bypass in Google Maps iframe setting

5.5CVSS0.00235EPSS

Exploits0References1

ATTACKERKB•added 2026/04/08 2:29 p.m.•0 views

CVE-2026-39390

5.5CVSS5.9AI score0.00235EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/04/08 2:29 p.m.•2 views

CVE-2026-39390 CI4MS has Stored XSS via srcdoc attribute bypass in Google Maps iframe setting

5.5CVSS5.9AI score0.00235EPSS

Exploits0References1

CVE•added 2026/04/08 2:29 p.m.•9 views

CVE-2026-39390

CVE-2026-39390 affects CI4MS (CodeIgniter 4-based CMS skeleton). Before version 0.31.4.0, the Google Maps iframe setting (cMap) in compInfosPost() sanitizes input with strip_tags() for an allowlist and regex stripping of on\w+ handlers, but the srcdoc attribute is not filtered, allowing an attac...

5.5CVSS5.9AI score0.00235EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/04/08 12:0 a.m.•2 views

PT-2026-31317

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to 0.31.4.0, the Google Maps iframe setting cMap field in compInfosPost sanitizes input using strip tags with an allowlist and regex-based removal of...

5.5CVSS5.9AI score0.00235EPSS

Exploits0References2

CNNVD•added 2026/04/08 12:0 a.m.•7 views

CI4MS 安全漏洞

CI4MS is an open-source blog page management tool developed by Ci4MS. Versions of CI4MS prior to 0.31.4.0 contained security vulnerabilities. These vulnerabilities stemmed from the srcdoc attribute in Google Maps iframes not being filtered properly, which could allow attackers with administrator...

5.5CVSS5.9AI score0.00235EPSS

Exploits0References1

OSV•added 2026/03/31 11:12 p.m.•2 views

GHSA-3H6J-9X8M-RG3G Graby has stored XSS via iframe srcdoc Attribute in htmLawed Sanitization Config

Summary Graby's cleanupXss function configures htmLawed with conflicting settings: safe=1 which removes combined with 'elements' = '+iframe-meta' which re-enables . htmLawed does not sanitize the srcdoc attribute, allowing injection of arbitrary JavaScript that executes when the content is render...

5.3CVSS6AI score

Exploits0References4

Snyk•added 2026/03/31 11:12 p.m.•1 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the cleanupXss function when sanitizing HTML content with conflicting htmLawed configuration options. An attacker can execute arbitrary JavaScript in the context of the affected application by injecting...

6.1CVSS6AI score

Exploits0References2

Github Security Blog•added 2026/03/31 11:12 p.m.•6 views

Graby has stored XSS via iframe srcdoc Attribute in htmLawed Sanitization Config

6AI score

Exploits0References4Affected Software1

RedhatCVE•added 2026/03/26 3:7 p.m.•2 views

CVE-2026-31876

Notesnook is a note-taking app focused on user privacy & ease of use. Prior to 3.3.9, a Stored Cross-Site Scripting XSS vulnerability existed in Notesnook's editor embed component when rendering Twitter/X embed URLs. The tweetToEmbed function in component.tsx interpolated the user-supplied URL...

5.4CVSS5.8AI score0.00172EPSS

Exploits0References1

EUVD•added 2026/03/11 6:17 p.m.•4 views

EUVD-2026-11286

5.4CVSS5.8AI score0.00172EPSS

Exploits0References2

ATTACKERKB•added 2026/03/11 6:17 p.m.•3 views

CVE-2026-31876

5.4CVSS5.8AI score0.00172EPSS

Exploits0References3Affected Software1

OSV•added 2026/03/11 6:17 p.m.•4 views

CVE-2026-31876 Notesnook has Stored XSS via unsanitized Twitter/X embed URL in editor (`tweetToEmbed`)

5.4CVSS5.8AI score0.00172EPSS

Exploits0References4

RedhatCVE•added 2026/03/05 1:57 a.m.•3 views

CVE-2026-26266

AliasVault is a privacy-first password manager with built-in email aliasing. A stored cross-site scripting XSS vulnerability was identified in the email rendering feature of AliasVault Web Client versions 0.25.3 and lower. When viewing received emails on an alias, the HTML content is rendered in ...

9.3CVSS5.8AI score0.00239EPSS

Exploits0References1

NVD•added 2026/03/03 11:15 p.m.•4 views

CVE-2026-26266

9.3CVSS0.00239EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by