Lucene search
+L

882 matches found

Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.5 views

PT-2025-52325

Name of the Vulnerable Software and Affected Versions Kentico Xperience affected versions not specified Description A stored cross-site scripting issue exists in Kentico Xperience. This allows attackers to inject malicious scripts through the rich text editor component used in page and form...

6.1CVSS5.8AI score0.00145EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/11/11 12:0 a.m.8 views

PT-2025-46528

Name of the Vulnerable Software and Affected Versions Lite XL versions prior to 2.1.9 Description Lite XL automatically executes the .lite project.lua file when opening a project directory without user confirmation. This file is designed for project configuration but can contain executable Lua...

7.6AI score0.00322EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/11/08 12:55 a.m.18 views

CVE-2025-63785

A DOM-based Cross-Site Scripting XSS vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerability occurs because user-supplied input is not properly sanitized before being directly injected into the DOM via innerHTML when editing a text element. An...

6.1CVSS6AI score0.0026EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/07 6:30 p.m.6 views

EUVD-2025-38263

A DOM-based Cross-Site Scripting XSS vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerability occurs because user-supplied input is not properly sanitized before being directly injected into the DOM via innerHTML when editing a text element. An...

5.5AI score0.0026EPSS
Exploits1References3
OSV
OSV
added 2025/11/07 5:15 p.m.6 views

CVE-2025-63785

A DOM-based Cross-Site Scripting XSS vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerability occurs because user-supplied input is not properly sanitized before being directly injected into the DOM via innerHTML when editing a text element. An...

6.1CVSS6AI score0.0026EPSS
Exploits1References2
NVD
NVD
added 2025/11/07 5:15 p.m.14 views

CVE-2025-63785

A DOM-based Cross-Site Scripting XSS vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerability occurs because user-supplied input is not properly sanitized before being directly injected into the DOM via innerHTML when editing a text element. An...

6.1CVSS0.0026EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/11/07 12:0 a.m.5 views

Onlook 安全漏洞

Onlook is a source code visual editing tool from the Onlook open source. A security vulnerability exists in Onlook version 0.2.32, which stems from a text editor feature that does not properly clean up user input and could lead to a cross-site scripting attack...

6.1CVSS6.2AI score0.0026EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/11/07 12:0 a.m.3 views

CVE-2025-63785

A DOM-based Cross-Site Scripting XSS vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerability occurs because user-supplied input is not properly sanitized before being directly injected into the DOM via innerHTML when editing a text element. An...

5.6AI score0.0026EPSS
Exploits1References2
CVE
CVE
added 2025/11/07 12:0 a.m.25 views

CVE-2025-63785

CVE-2025-63785 affects the Onlook web application (version 0.2.32) in its text editor feature. The root cause is unsafe handling of user input: input is not sanitized before being injected into the DOM via innerHTML when editing a text element, enabling a DOM-based XSS attack. Exploitation would ...

6.1CVSS5.7AI score0.0026EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/22 8:18 p.m.8 views

CVE-2025-53048

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Rich Text Editor. Supported versions that are affected are 8.60, 8.61 and 8.62. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft...

5.4CVSS5.2AI score0.00206EPSS
Exploits0References1
OSV
OSV
added 2025/10/21 8:20 p.m.4 views

CVE-2025-53048

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Rich Text Editor. Supported versions that are affected are 8.60, 8.61 and 8.62. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft...

5.4CVSS5.8AI score0.00206EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/21 8:2 p.m.6 views

EUVD-2025-35286

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Rich Text Editor. Supported versions that are affected are 8.60, 8.61 and 8.62. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft...

5.4CVSS4.8AI score0.00206EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/21 12:0 a.m.9 views

Oracle PeopleSoft 安全漏洞

Oracle PeopleSoft is a suite of enterprise human capital management solutions from Oracle Corporation USA. The product provides human capital management, financial management, supplier relationship management, and other capabilities.PeopleSoft Enterprise PeopleTools is one of the tools and...

5.4CVSS7AI score0.00206EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-1419

Malware in sbrugna...

2.1CVSS6.4AI score0.00573EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2016-0733

Malware in sbrugna...

5.4CVSS5.8AI score0.01047EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2001-0289

Malware in sbrugna...

4.6CVSS6.4AI score0.00742EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2010-4727

Malware in sbrugna...

3.5CVSS6.2AI score0.01044EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-2320

Malware in sbrugna...

4CVSS6.4AI score0.00895EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-14627

Malware in sbrugna...

8.8CVSS8.8AI score0.02347EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-4449

Malware in sbrugna...

5.4CVSS5.8AI score0.00849EPSS
Exploits0References3
Rows per page
Query Builder