Lucene search
+L

22 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-10074

Malware in sbrugna...

6.1CVSS6.3AI score0.00824EPSS
Exploits1References2
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-5582

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00571EPSS
Exploits1References2
redhatcve
redhatcve
added 2025/05/22 4:6 p.m.13 views

CVE-2020-18145

Cross Site Scripting XSS vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php...

6.1CVSS5.9AI score0.00824EPSS
Exploits1
redhatcve
redhatcve
added 2025/03/05 12:54 a.m.6 views

CVE-2024-53387

A DOM Clobbering vulnerability in umeditor v1.2.3 allows attackers to execute arbitrary code via supplying a crafted HTML element...

8.8CVSS7.5AI score0.00571EPSS
Exploits1References1
nvd
nvd
added 2025/03/03 5:15 p.m.7 views

CVE-2024-53387

A DOM Clobbering vulnerability in umeditor v1.2.3 allows attackers to execute arbitrary code via supplying a crafted HTML element...

8.8CVSS0.00571EPSS
Exploits1References1
cnnvd
cnnvd
added 2025/03/03 12:0 a.m.3 views

UMeditor 跨站脚本漏洞

UMeditor is a rich text editor from the Baidu FEX team. A security vulnerability exists in UMeditor version v1.2.3, which stems from DOM Clobbering and allows execution of arbitrary code via specially crafted HTML elements...

8.8CVSS7.3AI score0.00571EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2025/03/03 12:0 a.m.6 views

CVE-2024-53387

A DOM Clobbering vulnerability in umeditor v1.2.3 allows attackers to execute arbitrary code via supplying a crafted HTML element...

7.2AI score0.00571EPSS
Exploits1References1
cvelist
cvelist
added 2025/03/03 12:0 a.m.15 views

CVE-2024-53387

A DOM Clobbering vulnerability in umeditor v1.2.3 allows attackers to execute arbitrary code via supplying a crafted HTML element...

0.00571EPSS
Exploits1References1
osv
osv
added 2025/03/03 12:0 a.m.4 views

CVE-2024-53387

A DOM Clobbering vulnerability in umeditor v1.2.3 allows attackers to execute arbitrary code via supplying a crafted HTML element...

8.8CVSS7AI score0.00571EPSS
Exploits1References3
cve
cve
added 2025/03/03 12:0 a.m.52 views

CVE-2024-53387

CVE-2024-53387 affects umeditor v1.2.3 and is described as a DOM Clobbering vulnerability that allows arbitrary code execution via a crafted HTML element. The root cause is a DOM clobber issue in the editor component; exploitation requires user interaction (per CVSS vector). Impact is high (C/H/I...

8.8CVSS7.6AI score0.00571EPSS
Exploits1References1Affected Software1
osv
osv
added 2024/08/29 8:15 p.m.3 views

CVE-2024-41351

bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting XSS via Public/statics/umeditor123/php/getContent.php...

6.1CVSS5.8AI score0.00329EPSS
Exploits1References2
nvd
nvd
added 2024/08/29 8:15 p.m.20 views

CVE-2024-41350

bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting XSS via Public/statics/umeditor123/php/imageUp.php...

6.1CVSS0.00329EPSS
Exploits1References2
cnnvd
cnnvd
added 2024/08/29 12:0 a.m.5 views

bjyadmin 安全漏洞

bjyadmin is an integrated application based on ThinkPHP extensions by the individual developer baijunyao. A security vulnerability exists in bjyadmin version a560fd5, which stems from a cross-site scripting XSS vulnerability via Public/statics/umeditor123/php/getContent.php...

6.1CVSS5.8AI score0.00329EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2024/08/29 12:0 a.m.6 views

PT-2024-29369 · Bjyadmin · Bjyadmin

Name of the Vulnerable Software and Affected Versions: bjyadmin version a560fd5 Description: The issue is related to Cross Site Scripting XSS in the bjyadmin commit a560fd5. This vulnerability comes from the imageUp.php file located in the Public/statics/umeditor1 2 3/php directory...

6.1CVSS6AI score0.00329EPSS
Exploits1References7
cnvd
cnvd
added 2021/07/15 12:0 a.m.6 views

Unspecified vulnerability in umeditor

UMeditor is an editor application. A security vulnerability exists in umeditor, which stems from a cross-site scripting XSS vulnerability in umeditor v1.2.3. An attacker can exploit the vulnerability to execute client-side code...

6.1CVSS5.7AI score0.00824EPSS
Exploits1References1
nvd
nvd
added 2021/07/14 6:15 p.m.26 views

CVE-2020-18145

Cross Site Scripting XSS vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php...

6.1CVSS0.00824EPSS
Exploits1References1
osv
osv
added 2021/07/14 6:15 p.m.17 views

CVE-2020-18145

Cross Site Scripting XSS vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php...

6.1CVSS5.9AI score
Exploits0References1
prion
prion
added 2021/07/14 6:15 p.m.16 views

Cross site scripting

Cross Site Scripting XSS vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php...

4.3CVSS6AI score0.00824EPSS
Exploits1References1Affected Software1
cve
cve
added 2021/07/14 5:2 p.m.53 views

CVE-2020-18145

UMeditor 1.2.3 is affected by a Cross Site Scripting (XSS) vulnerability exploitable via /public/common/umeditor/php/getcontent.php. The issue originates from a flaw in how input is handled, enabling an attacker to inject and execute client-side code. Affected component/file: getcontent.php in um...

6.1CVSS6AI score0.00824EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2021/07/14 5:2 p.m.29 views

CVE-2020-18145

Cross Site Scripting XSS vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php...

6AI score0.00824EPSS
Exploits1References1
Rows per page
Query Builder