Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/26 7:30 p.m.6 views

CVE-2026-44696

OpenProject is open-source, web-based project management software. Prior to 17.4.0, OpenProject's rich text markdown rendering pipeline uses Sanitize::Config::RELAXED:css for inline style sanitization. This configuration permits essentially all CSS properties in style attributes on permitted HTML...

5.7CVSS5.8AI score0.00211EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/09/05 12:0 a.m.10 views

PT-2022-17620 · WordPress · The Visual Portfolio

Name of the Vulnerable Software and Affected Versions: The Visual Portfolio, Photo Gallery & Post Grid WordPress plugin versions prior to 2.19.0 Description: The issue is related to improper authorization checks in some REST endpoints of the plugin, allowing users with a role as low as contributo...

5.4CVSS5.4AI score0.00432EPSS
Exploits2References6
AlpineLinux
AlpineLinux
added 2020/03/25 9:11 p.m.48 views

CVE-2020-6813

When protecting CSS blocks with the nonce feature of Content Security Policy, the @import statement in the CSS block could allow an attacker to inject arbitrary styles, bypassing the intent of the Content Security Policy. This vulnerability affects Firefox 74...

5.3CVSS6.6AI score0.01174EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2020/03/11 12:0 a.m.36 views

CVE-2020-6813

When protecting CSS blocks with the nonce feature of Content Security Policy, the @import statement in the CSS block could allow an attacker to inject arbitrary styles, bypassing the intent of the Content Security Policy. This vulnerability affects Firefox 74...

5.3CVSS6.9AI score0.01174EPSS
Exploits0References3
Rows per page
Query Builder