Lucene search
K

127 matches found

Jake Archibald's Blog
Jake Archibald's Blog
added 2024/10/18 1:0 a.m.10 views

How should <selectedoption> work?

We're finally getting a way to fully style & customise elements! But there's a detail I'd like everyone's opinion on. Update: Your feedback was heard, and folks have agreed to change the behaviour here. See the update below. A brief intro to customisable If you want to hear about it in depth, I...

6.6AI score
Exploits0
Snyk
Snyk
added 2024/08/28 9:42 p.m.2 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS due to missing sanitization of the spreadsheet styling information, via the \PhpOffice\PhpSpreadsheet\Writer\Html component. PoC php loadDIR . '/book.xlsx'; $writer = new...

5.4CVSS6.4AI score0.00395EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/08/28 12:0 a.m.5 views

PT-2024-31397 · Phpoffice · Phpspreadsheet

Name of the Vulnerable Software and Affected Versions: PHPSpreadsheet versions prior to 2.1.0 Description: The issue concerns the PhpOfficePhpSpreadsheetWriterHtml component, which fails to sanitize spreadsheet styling information, such as font names. This allows an attacker to inject arbitrary...

5.4CVSS9.3AI score0.00395EPSS
Exploits1References11
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:42 p.m.3 views

Malicious code in styling (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSV
OSV
added 2024/06/25 1:42 p.m.7 views

MAL-2024-6052 Malicious code in styling (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0References1
wpexploit
wpexploit
added 2024/03/25 12:0 a.m.212 views

Testimonial Slider < 2.3.8 - Admin+ Stored XSS

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup 1. Go to "Testimonial Shortcode" 2. Ad...

5.7AI score0.00442EPSS
Exploits2
OSV
OSV
added 2024/03/06 11:16 a.m.27 views

BIT-GITLAB-2022-1416

Missing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0 before 14.10.1 allows for rendering of attacker controlled HTML tags and CSS styling...

5.4CVSS5.4AI score0.00708EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.19 views

GitLab 1.0.2 < 14.8.6 / 14.9.0 < 14.9.4 / 14.10.0 < 14.10.1 (CVE-2022-1416)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Missing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0...

5.4CVSS5.7AI score0.00708EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/12/15 2:7 a.m.2 views

SUSE CVE-2023-6707

Use after free in CSS in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS9.2AI score0.00649EPSS
Exploits0References6
NVD
NVD
added 2023/11/22 2:15 p.m.26 views

CVE-2023-27633

Cross-Site Request Forgery CSRF vulnerability in Pixelgrade Customify – Intuitive Website Styling plugin = 2.10.4 versions...

8.8CVSS0.00295EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/22 1:12 p.m.29 views

CVE-2023-27633 WordPress Customify Plugin <= 2.10.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Pixelgrade Customify – Intuitive Website Styling plugin = 2.10.4 versions...

4.3CVSS9AI score0.00295EPSS
Exploits0References1
CVE
CVE
added 2023/11/22 1:12 p.m.33 views

CVE-2023-27633

The CVE-2023-27633 entry concerns the WordPress plugin Customify (Pixelgrade) with a CSRF vulnerability in versions

8.8CVSS6.5AI score0.00295EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/11/22 12:0 a.m.4 views

WordPress Plugin Customify Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

8.8CVSS8.1AI score0.00295EPSS
Exploits0References2
NVD
NVD
added 2023/10/25 6:17 p.m.46 views

CVE-2023-41339

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The WMS specification defines an sld= parameter for GetMap, GetLegendGraphic and GetFeatureInfo operations for user supplied "dynamic styling". Enabling the use of dynamic styles,...

8.6CVSS8.7AI score0.00514EPSS
Exploits0References3
Prion
Prion
added 2023/10/25 6:17 p.m.21 views

Server side request forgery (ssrf)

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The WMS specification defines an sld= parameter for GetMap, GetLegendGraphic and GetFeatureInfo operations for user supplied "dynamic styling". Enabling the use of dynamic styles,...

5CVSS5.4AI score0.00514EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/24 8:15 p.m.18 views

CVE-2023-41339 Unsecured WMS dynamic styling sld=<url> parameter affords blind unauthenticated SSRF in GeoServer

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. The WMS specification defines an sld= parameter for GetMap, GetLegendGraphic and GetFeatureInfo operations for user supplied "dynamic styling". Enabling the use of dynamic styles,...

8.6CVSS6.9AI score0.00514EPSS
Exploits0References3
CVE
CVE
added 2023/10/24 8:15 p.m.121 views

CVE-2023-41339

GeoServer exposes a Server-Side Request Forgery (SSRF) risk via the dynamic styling parameter sld= in GetMap/GetLegendGraphic/GetFeatureInfo when URL checks are not configured. The vulnerability enables an attacker to cause the server to fetch external resources, potentially capturing NetNTLMv2 h...

8.6CVSS6.8AI score0.00514EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2023/10/24 7:20 p.m.44 views

Unsecured WMS dynamic styling sld=<url> parameter affords blind unauthenticated SSRF

Summary The WMS specification defines an sld= parameter for GetMap, GetLegendGraphic and GetFeatureInfo operations for user supplied "dynamic styling". Enabling the use of dynamic styles, without also configuring URL checks, provides the opportunity for Service Side Request Forgery. It is possibl...

8.6CVSS6.7AI score0.00514EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2023/10/24 7:20 p.m.23 views

GHSA-CQPC-X2C6-2GMF Unsecured WMS dynamic styling sld=<url> parameter affords blind unauthenticated SSRF

Summary The WMS specification defines an sld= parameter for GetMap, GetLegendGraphic and GetFeatureInfo operations for user supplied "dynamic styling". Enabling the use of dynamic styles, without also configuring URL checks, provides the opportunity for Service Side Request Forgery. It is possibl...

5.3CVSS6.8AI score0.00514EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/10/24 12:0 a.m.10 views

PT-2023-27915 · Geoserver · Geoserver

Name of the Vulnerable Software and Affected Versions: GeoServer versions prior to 2.22.5 GeoServer versions prior to 2.23.2 GeoServer version 2.10.3 GeoServer version 2.11.1 Description: The issue concerns the use of dynamic styles in GeoServer, which can lead to Service Side Request Forgery. Th...

8.6CVSS5.2AI score0.00514EPSS
Exploits0References9
Rows per page
Query Builder