Lucene search
K

9 matches found

CNNVD
CNNVD
added 2026/04/07 12:0 a.m.8 views

MediaWiki - Cargo Extension 安全漏洞

MediaWiki - Cargo Extension is an open-source plugin for querying and storing data in MediaWiki. Versions of MediaWiki - Cargo Extension prior to 3.8.7 contained security vulnerabilities, which were caused by improper handling of script-related HTML tags. These vulnerabilities could lead to...

6.3CVSS5.8AI score0.00189EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.6 views

PT-2026-4239

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in mwtemplates DeepDigital deepdigital allows Code Injection.This issue affects DeepDigital: from n/a through = 1.0.2...

5.4AI score0.00291EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.7 views

PT-2025-50068

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in sevenspark Contact Form 7 Dynamic Text Extension contact-form-7-dynamic-text-extension allows Code Injection.This issue affects Contact Form 7 Dynamic Text Extension: from n/a through = 5.0.3...

6.6AI score0.00236EPSS
Exploits0References2
Fedora
Fedora
added 2025/12/04 12:53 a.m.8 views

[SECURITY] Fedora 43 Update: python-ezdxf-1.4.3-3.fc43

This Python package is designed to facilitate the creation and manipulation of DXF documents, with compatibility across various DXF versions. It empowers users to seamlessly load and edit DXF files while preserving all content, except for comments. Any unfamiliar DXF tags encountered in the...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2008-4114

Malware in sbrugna...

7.2CVSS6.1AI score0.00773EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/05/22 4:10 p.m.9 views

CVE-2020-11499

Firmware Analysis and Comparison Tool FACT 3 has Stored XSS when updating analysis details via a localhost web request, as demonstrated by mishandling of the tags and version fields in helperFunctions/mongotaskconversion.py...

6.1CVSS5.9AI score0.00614EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/11/19 12:0 a.m.3 views

lxml_html_clean 安全漏洞

lxmlhtmlclean is a separate project of the Fedora Python SIG open source HTML cleanup function copied from lxml.HTML.clean. A security vulnerability exists in versions of lxmlhtmlclean prior to 0.4.0, which stems from improper handling of special tags and is vulnerable to cross-site scripting...

7.7CVSS5.7AI score0.00472EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/03/25 7:35 p.m.4 views

Mozilla: Improper handling of html and body tags enabled CSP nonce leakage

The Mozilla Foundation Security Advisory describes this flaw as: Using a markup injection an attacker could have stolen nonce values. This could have been used to bypass strict content security policies...

6.1CVSS7.3AI score0.00704EPSS
Exploits1References6
0day.today
0day.today
added 2021/05/17 12:0 a.m.166 views

Advanced Guestbook 2.4.4 - (Smilies) Persistent Cross-Site Scripting Vulnerability

Exploit Title: Advanced Guestbook 2.4.4 - 'Smilies' Persistent Cross-Site Scripting XSS Exploit Author: Abdulkadir AYDOGAN Vendor Homepage: https://www.ampps.com/apps/guestbooks/AdvancedGuestbook Software Link: https://www.ampps.com/apps/guestbooks/AdvancedGuestbook Version: 2.4.4 Advanced...

0.1AI score
Exploits0
Rows per page
Query Builder