Lucene search
+L

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:6 a.m.9 views

CVE-2019-20174

Auth0 Lock before 11.21.0 allows XSS when additionalSignUpFields is used with an untrusted placeholder...

6.1CVSS6AI score0.00724EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-0280

Malware in sbrugna...

6.1CVSS6.2AI score0.00724EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-0619

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00533EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 9:17 p.m.7 views

CVE-2021-32859

The Baremetrics date range picker is a solution for selecting both date ranges and single dates from a single calender view. Versions 1.0.14 and prior are prone to cross-site scripting XSS when handling untrusted placeholder entries. An attacker who is able to influence the field placeholder when...

6.1CVSS5.8AI score0.00533EPSS
Exploits1
OSV
OSV
added 2023/02/21 3:30 p.m.3 views

GHSA-465F-MXXH-GRC4 Baremetrics date range picker vulnerable to Cross-site Scripting

The Baremetrics date range picker is a solution for selecting both date ranges and single dates from a single calender view. Versions 1.0.14 and prior are prone to cross-site scripting XSS when handling untrusted placeholder entries. An attacker who is able to influence the field placeholder when...

6.1CVSS6.3AI score0.00533EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2023/02/21 3:30 p.m.23 views

Baremetrics date range picker vulnerable to Cross-site Scripting

The Baremetrics date range picker is a solution for selecting both date ranges and single dates from a single calender view. Versions 1.0.14 and prior are prone to cross-site scripting XSS when handling untrusted placeholder entries. An attacker who is able to influence the field placeholder when...

6.1CVSS5.7AI score0.00533EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2023/02/21 3:15 p.m.10 views

Cross site scripting

The Baremetrics date range picker is a solution for selecting both date ranges and single dates from a single calender view. Versions 1.0.14 and prior are prone to cross-site scripting XSS when handling untrusted placeholder entries. An attacker who is able to influence the field placeholder when...

5.8CVSS5.9AI score0.00533EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/02/20 12:0 a.m.7 views

PT-2023-12191 · Baremetrics · Baremetrics Date Range Picker

Name of the Vulnerable Software and Affected Versions: Baremetrics date range picker versions 1.0.14 and prior Description: The issue is related to cross-site scripting XSS when handling untrusted placeholder entries. An attacker who can influence the placeholder field when creating a Calendar...

6.1CVSS5.8AI score0.00533EPSS
Exploits1References7
Cvelist
Cvelist
added 2023/02/20 12:0 a.m.31 views

CVE-2021-32859 Baremetrics date range picker vulnerable to Cross-site Scripting

The Baremetrics date range picker is a solution for selecting both date ranges and single dates from a single calender view. Versions 1.0.14 and prior are prone to cross-site scripting XSS when handling untrusted placeholder entries. An attacker who is able to influence the field placeholder when...

6.1CVSS6.1AI score0.00533EPSS
Exploits1References2
NVD
NVD
added 2020/02/03 6:15 p.m.20 views

CVE-2019-20174

Auth0 Lock before 11.21.0 allows XSS when additionalSignUpFields is used with an untrusted placeholder...

6.1CVSS6AI score0.00724EPSS
Exploits1References2
Rows per page
Query Builder