Lucene search
K

5 matches found

CNNVD
CNNVD
added 2026/04/14 12:0 a.m.10 views

October 跨站脚本漏洞

October is an open-source content management system CMS and online platform developed by October. Versions prior to October 3.7.14 and 4.1.10 contained a cross-site scripting vulnerability. This vulnerability stemmed from regular expression patterns in the SVG cleanup logic, which could be...

4.8CVSS5.6AI score0.00217EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/06 12:0 a.m.4 views

WordPress plugin URL Image Importer 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site...

6.4CVSS5.8AI score0.00197EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/17 12:0 a.m.3 views

ThingsBoard 安全漏洞

ThingsBoard is a Java-based platform for IOT devices for monitoring, management, and data collection by the ThingsBoard team. A security vulnerability exists in ThingsBoard versions prior to 4.2.1, which stems from insufficient cleanup of uploaded SVG files and improper validation of content type...

6.2CVSS5.9AI score0.00345EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/06/09 12:0 a.m.4 views

Silverpeas 安全漏洞

Silverpeas is a suite of open source business collaboration platforms from Silverpeas Open Source. The platform includes applications for project management, blogs, forums, and document management. A security vulnerability exists in Silverpeas version 6.4.2, which stems from insufficient cleanup ...

5.4CVSS5.9AI score0.00267EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/07/17 12:0 a.m.3 views

WordPress plugin Enable SVG, WebP & ICO Upload 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

5.4CVSS6.4AI score0.0032EPSS
Exploits1References2
Rows per page
Query Builder