Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2026-47761

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TinyMCE is an open source rich text editor. Prior to 5.11.1, 7.9.3, and 8.5.1, there is a stored XSS vulnerability in the media plugin. Attackers can inject...

8.7CVSS5.8AI score0.00223EPSS
Exploits0References2
NVD
NVD
added 2013/07/08 8:55 p.m.22 views

CVE-2013-2204

moxieplayer.as in Moxiecode moxieplayer, as used in the TinyMCE Media plugin in WordPress before 3.5.2 and other products, does not consider the presence of a pound sign character during extraction of the QUERYSTRING, which allows remote attackers to pass arbitrary parameters to a Flash...

4.3CVSS6.5AI score0.02904EPSS
Exploits1References5
OSV
OSV
added 2013/07/08 8:55 p.m.10 views

CVE-2013-2204

moxieplayer.as in Moxiecode moxieplayer, as used in the TinyMCE Media plugin in WordPress before 3.5.2 and other products, does not consider the presence of a pound sign character during extraction of the QUERYSTRING, which allows remote attackers to pass arbitrary parameters to a Flash...

6.5AI score
Exploits0References6
UbuntuCve
UbuntuCve
added 2013/07/08 8:55 p.m.26 views

CVE-2013-2204

moxieplayer.as in Moxiecode moxieplayer, as used in the TinyMCE Media plugin in WordPress before 3.5.2 and other products, does not consider the presence of a pound sign character during extraction of the QUERYSTRING, which allows remote attackers to pass arbitrary parameters to a Flash...

4.3CVSS6AI score0.02904EPSS
Exploits1References2
Cvelist
Cvelist
added 2013/07/08 8:0 p.m.26 views

CVE-2013-2204

moxieplayer.as in Moxiecode moxieplayer, as used in the TinyMCE Media plugin in WordPress before 3.5.2 and other products, does not consider the presence of a pound sign character during extraction of the QUERYSTRING, which allows remote attackers to pass arbitrary parameters to a Flash...

6.4AI score0.02904EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2013/07/08 8:0 p.m.26 views

CVE-2013-2204

moxieplayer.as in Moxiecode moxieplayer, as used in the TinyMCE Media plugin in WordPress before 3.5.2 and other products, does not consider the presence of a pound sign character during extraction of the QUERYSTRING, which allows remote attackers to pass arbitrary parameters to a Flash...

4.3CVSS6.4AI score0.02904EPSS
Exploits1
Rows per page
Query Builder