Lucene search
K

746 matches found

RedHat Linux
RedHat Linux
added 2026/04/13 10:5 a.m.3 views

firefox: thunderbird: Use-after-free in the CSS Parsing and Computation component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the CSS Parsing and Computation component...

9.8CVSS7.2AI score0.00483EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.10 views

Tandoor Recipes 跨站脚本漏洞

Tandoor Recipes is an open-source application designed for managing recipes, planning meals, creating shopping lists, and more. Versions of Tandoor Recipes prior to 2.6.4 contained a cross-site scripting vulnerability. This vulnerability stemmed from the ability to inject any tag into the recipe...

5.4CVSS5.7AI score0.00173EPSS
Exploits1References3
OSV
OSV
added 2026/04/03 6:31 a.m.3 views

GHSA-VXG2-HHGR-37FX Roundcube Webmail: Insufficient CSS sanitization in HTML e-mail messages

An issue was discovered in Roundcube Webmail 1.6.0 before 1.6.14. Insufficient Cascading Style Sheets CSS sanitization in HTML e-mail messages may lead to SSRF or Information Disclosure, e.g., if stylesheet links point to local network hosts...

5.4CVSS5.9AI score0.0031EPSS
Exploits0References7
NVD
NVD
added 2026/04/03 5:16 a.m.6 views

CVE-2026-35540

An issue was discovered in Roundcube Webmail 1.6.0 before 1.6.14. Insufficient Cascading Style Sheets CSS sanitization in HTML e-mail messages may lead to SSRF or Information Disclosure, e.g., if stylesheet links point to local network hosts...

6.5CVSS0.0031EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/03 3:47 a.m.14 views

CVE-2026-35540

An issue was discovered in Roundcube Webmail 1.6.0 before 1.6.14. Insufficient Cascading Style Sheets CSS sanitization in HTML e-mail messages may lead to SSRF or Information Disclosure, e.g., if stylesheet links point to local network hosts...

5.4CVSS0.0031EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/04/03 3:47 a.m.5 views

CVE-2026-35540

An issue was discovered in Roundcube Webmail 1.6.0 before 1.6.14. Insufficient Cascading Style Sheets CSS sanitization in HTML e-mail messages may lead to SSRF or Information Disclosure, e.g., if stylesheet links point to local network hosts...

6.5CVSS5.2AI score0.0031EPSS
Exploits0
CVE
CVE
added 2026/04/03 3:47 a.m.23 views

CVE-2026-35540

Summary: CVE-2026-35540 affects Roundcube Webmail 1.6.0 through before 1.6.14. The issue is insufficient CSS sanitization in HTML e‑mail messages, which may allow SSRF or Information Disclosure when stylesheet links resolve to local network hosts. What’s affected: Roundcube Webmail (version linea...

6.5CVSS5.9AI score0.0031EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.9 views

Roundcube Webmail 安全漏洞

Roundcube Webmail is an open-source browser-based IMAP client developed by Roundcube. It supports address book management, information search, spelling checking, and more. Versions of Roundcube Webmail from 1.6.0 to 1.6.14 contained security vulnerabilities. These vulnerabilities were caused by...

6.5CVSS5.8AI score0.0031EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.4 views

FreeBSD : Roundcube -- Multiple vulnerabilities (c5b93cb5-2363-11f1-81da-8447094a420f)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the c5b93cb5-2363-11f1-81da-8447094a420f advisory. The Roundcube project reports: pre-auth arbitrary file write via unsafe deserialization in redis/memcac...

6AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/18 12:0 a.m.4 views

PT-2026-29979

Name of the Vulnerable Software and Affected Versions Roundcube Webmail versions 1.6.0 through 1.6.13 Description An issue exists in Roundcube Webmail where insufficient Cascading Style Sheets CSS sanitization in HTML email messages could lead to Server-Side Request Forgery SSRF or Information...

6.5CVSS5.8AI score0.0031EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.4 views

EulerOS 2.0 SP12 : libxslt (EulerOS-SA-2026-1374)

According to the versions of the libxslt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application...

5.5CVSS5.8AI score0.00161EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/12 5:20 p.m.3 views

CVE-2026-31873

Unhead is a document head and template manager. Prior to 2.1.11, The link.href check in makeTagSafe safe.ts uses String.includes, which is case-sensitive. Browsers treat URI schemes case-insensitively. DATA:text/css,... is the same as data:text/css,... to the browser, but 'DATA:...'.includes'data...

5.9AI score0.00237EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/03/12 5:20 p.m.20 views

CVE-2026-31873

Unhead suffers a bypass of URI scheme sanitization in makeTagSafe prior to version 2.1.11: the code checks href values with String.includes(), which is case-sensitive. Since browsers treat URI schemes case-insensitively, inputs like DATA:text/css,... can evade the check and allow arbitrary CSS vi...

6.1CVSS5.9AI score0.00237EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2026/03/05 7:49 p.m.4 views

CVE-2026-28348

lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.4, the hassneakyjavascript method strips backslashes before checking for dangerous CSS keywords. This causes CSS Unicode escape sequences to bypass the @import and expression filters,...

6.1CVSS5.1AI score0.00228EPSS
Exploits1
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.6 views

darkreader 安全漏洞

DarkReader is an open-source web dark mode browser extension developed by Dark Reader. Versions of DarkReader prior to 4.9.117 contained a security vulnerability, which was caused by improper cross-source style sheet handling. This vulnerability could allow access to style sheets on the local...

3.4CVSS5.8AI score0.00108EPSS
Exploits0References1
CVE
CVE
added 2026/02/14 4:35 a.m.20 views

CVE-2026-2027

CVE-2026-2027 concerns the AMP Enhancer – Compatibility Layer for Official AMP Plugin (WordPress). Affected: AMP Enhancer, all versions up to and including 1.0.49. Root cause: insufficient input sanitization and output escaping on AMP Custom CSS attributes. Impact: Stored Cross-Site Scripting (XS...

4.4CVSS5.7AI score0.00202EPSS
Exploits0References4
OSV
OSV
added 2026/02/11 5:56 p.m.5 views

MGASA-2026-0036 Updated thunderbird packages fix security vulnerability

CSS-based exfiltration of the content from partially encrypted emails when allowing remote content. CVE-2026-0818...

4.3CVSS5.6AI score0.00159EPSS
Exploits0References4
CVE
CVE
added 2026/02/03 1:24 a.m.28 views

CVE-2025-67484

MediaWiki vulnerability CVE-2025-67484 affects MediaWiki versions before 1.39.16, 1.43.6, 1.44.3, and 1.45.1. The issue is tied to the Action API xslt option, enabling JavaScript execution by administrators who are not interface administrators; the xslt option is now disabled by default and can b...

9.8CVSS5.2AI score0.00395EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/01/26 6:16 p.m.4 views

CVE-2025-57785

A Double Free in XSLT showindex has been identified in Hiawatha webserver version 11.7 which allows an unauthenticated attacker to corrupt data which may lead to arbitrary code execution...

6.5CVSS6AI score0.00344EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/26 5:46 p.m.4 views

CVE-2025-57785

A Double Free in XSLT showindex has been identified in Hiawatha webserver version 11.7 which allows an unauthenticated attacker to corrupt data which may lead to arbitrary code execution...

6.5CVSS6AI score0.00344EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder