Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/06 6:53 a.m.6 views

CVE-2026-29038

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, there is a reflected cross-site scripting XSS vulnerability identified in the /rss/tag/ endpoint of changedetection.io. The taguuid path parameter is reflected directly in the HTTP response body...

6.1CVSS5.6AI score0.00282EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/03/06 6:53 a.m.30 views

CVE-2026-29038 changedetection.io: Reflected XSS in RSS Tag Error Response

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, there is a reflected cross-site scripting XSS vulnerability identified in the /rss/tag/ endpoint of changedetection.io. The taguuid path parameter is reflected directly in the HTTP response body...

6.1CVSS0.00282EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/06 6:53 a.m.4 views

CVE-2026-29038 changedetection.io: Reflected XSS in RSS Tag Error Response

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, there is a reflected cross-site scripting XSS vulnerability identified in the /rss/tag/ endpoint of changedetection.io. The taguuid path parameter is reflected directly in the HTTP response body...

6.1CVSS5.6AI score0.00282EPSS
Exploits1References3
CVE
CVE
added 2026/03/06 6:53 a.m.17 views

CVE-2026-29038

CVE-2026-29038 affects changedetection.io before version 0.54.4. The vulnerability is a reflected XSS in the /rss/tag/ endpoint where the URL path parameter tag_uuid is reflected in the HTTP response body without HTML escaping. Flask returns text/html by default for plain strings, enabling the br...

6.1CVSS5.7AI score0.00282EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2026/03/06 6:53 a.m.3 views

CVE-2026-29038 changedetection.io: Reflected XSS in RSS Tag Error Response

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, there is a reflected cross-site scripting XSS vulnerability identified in the /rss/tag/ endpoint of changedetection.io. The taguuid path parameter is reflected directly in the HTTP response body...

6.1CVSS5.6AI score0.00282EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2026/03/04 8:58 p.m.82 views

changedetection.io has Reflected XSS in its RSS Tag Error Response

A reflected cross-site scripting XSS vulnerability was identified in the /rss/tag/ endpoint of changedetection.io. The taguuid path parameter is reflected directly in the HTTP response body without HTML escaping. Since Flask returns text/html by default for plain string responses, the browser...

6.1CVSS5.8AI score0.00282EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder