Lucene search
K

4 matches found

CVE
CVE
added 2026/06/21 1:26 p.m.13 views

CVE-2026-56383

CVE-2026-56383 : Craft CMS contains a stored XSS in the editableTable.twig component via the Row Heading column type. The vulnerability arises from unsanitized input in row heading default values, enabling an attacker with an administrator account (when allowAdminChanges is enabled) to inject arb...

4.8CVSS5.8AI score0.00177EPSS
Exploits0References3
CVE
CVE
added 2025/08/31 3:32 p.m.15 views

CVE-2025-9735

CVE-2025-9735 concerns O2OA up to version 10.0-410. The vulnerability arises from manipulation of arguments in the file /x_query_assemble_designer/jaxrs/table within the Personal Profile Page component, specifically description/applicationName/queryName, which triggers cross-site scripting. Explo...

5.4CVSS4AI score0.00244EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2024/01/13 12:0 a.m.4 views

QStar Archive Solutions Security Breach

QStar Archive Solutions is QStar's range of storage technologies for managing disk arrays, object storage, tape libraries, optical libraries, WORM and clouds private and hybrid. A security vulnerability exists in the QStar Archive Solutions RELEASE3-0 Build 7 release, which stems from a DOM-based...

6.1CVSS5.8AI score0.00376EPSS
Exploits1References2
OSV
OSV
added 2023/06/22 11:15 a.m.5 views

CVE-2023-34601

Jeesite before commit 10742d3 was discovered to contain a SQL injection vulnerability via the component $businessTable at /act/ActDao.xml...

9.8CVSS5.8AI score0.00692EPSS
Exploits1References1
Rows per page
Query Builder