Lucene search
+L

9 matches found

redhatcve
redhatcve
added 2025/10/11 5:42 a.m.13 views

CVE-2025-11570

Versions of the package drupal-pattern-lab/unified-twig-extensions from 0.0.0 are vulnerable to Cross-site Scripting XSS due to insufficient filtering of data. Note: This is exploitable only if the code is executed outside of Drupal; the function is intended to be shared between Drupal and Patter...

4.8CVSS6.6AI score0.00202EPSS
Exploits0References1
osv
osv
added 2025/10/10 5:15 a.m.6 views

CVE-2025-11570

Versions of the package drupal-pattern-lab/unified-twig-extensions from 0.0.0 are vulnerable to Cross-site Scripting XSS due to insufficient filtering of data. Note: This is exploitable only if the code is executed outside of Drupal; the function is intended to be shared between Drupal and Patter...

4.8CVSS5.8AI score0.00202EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/10/10 5:0 a.m.3 views

CVE-2025-11570

Versions of the package drupal-pattern-lab/unified-twig-extensions from 0.0.0 are vulnerable to Cross-site Scripting XSS due to insufficient filtering of data. Note: This is exploitable only if the code is executed outside of Drupal; the function is intended to be shared between Drupal and Patter...

4.8CVSS6.2AI score0.00202EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-7078

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00913EPSS
Exploits1References7
ubuntucve
ubuntucve
added 2021/06/11 4:15 p.m.11 views

CVE-2021-22181

A denial of service vulnerability in GitLab CE/EE affecting all versions since 11.8 allows an attacker to create a recursive pipeline relationship and exhaust resources...

7.7CVSS6.8AI score0.01058EPSS
Exploits0References1
osv
osv
added 2018/04/25 2:30 p.m.12 views

GHSA-VPCH-RXW3-FGX8 Cross-Site Scripting in @risingstack/protect

All versions of @risingstack/protect are vulnerable to Cross-Site Scripting. The isXss XSS validator has several bypasses that may allow attackers to execute arbitrary JavaScript in a victim's browser. Recommendation No fix is currently available. Consider using an alternative package. The packag...

6.1CVSS6.1AI score0.01327EPSS
Exploits1References8
osv
osv
added 2015/05/08 11:54 p.m.9 views

MGASA-2015-0202 Updated wordpress packages fix security vulnerabilities

Updated wordpress packages fixes security vulnerabilities: The wordpress package has been updated to version 3.9.6, which fixes multiple cross-site scripting issues, including CVE-2015-3440, and other bugs. Note that upstream has advised us that WordPress 3.9.x is no longer supported. As this...

4.3CVSS6.3AI score0.17945EPSS
Exploits1References4
mageia
mageia
added 2015/05/08 11:54 p.m.42 views

Updated wordpress packages fix security vulnerabilities

Updated wordpress packages fixes security vulnerabilities: The wordpress package has been updated to version 3.9.6, which fixes multiple cross-site scripting issues, including CVE-2015-3440, and other bugs. Note that upstream has advised us that WordPress 3.9.x is no longer supported. As this...

4.3CVSS6.6AI score0.17945EPSS
Exploits1References3
exploitdb
exploitdb
added 1999/08/30 12:0 a.m.58 views

BSD/OS 3.1/4.0.1 / FreeBSD 3.0/3.1/3.2 / RedHat Linux 6.0 - 'amd' Remote Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/614/info There is a remotely exploitable buffer overflow condition in the amd daemon under several operating systems. Amd is a daemon that automatically mounts filesystems whenever a file or directory within that filesystem is accessed. Filesystems are...

7.4AI score
Exploits0
Rows per page
Query Builder