Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/05/26 8:14 p.m.11 views

CVE-2026-45249

A cross-site scripting XSS vulnerability exists in Apache ECharts in the Lines series tooltip rendering logic. This issue affects Apache ECharts: from before 6.1.0. In versions prior to 6.1.0, if both Lines series and tooltip are used, and no user-specified tooltip.formatter is provided, and...

6.1CVSS5.7AI score0.00759EPSS
Exploits0References1
OSV
OSV
added 2026/04/25 5:48 a.m.20 views

OESA-2026-2009 python-lxml security update

\ Security Fixes: lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to...

7.5CVSS5.3AI score0.00324EPSS
Exploits1References2
OSV
OSV
added 2026/04/25 5:48 a.m.7 views

OESA-2026-2010 python-lxml security update

\ Security Fixes: lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to...

7.5CVSS5.4AI score0.00324EPSS
Exploits1References2
Snyk
Snyk
added 2025/09/19 9:31 p.m.2 views

Cross-site Request Forgery (CSRF)

Overview com.liferay.portal:portal-service is a portal service package for Liferay. Affected versions of this package are vulnerable to Cross-site Request Forgery CSRF via the orderUuid parameter in the server license registration process. An attacker can register a server license without...

5.1CVSS6.5AI score0.00169EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/12/04 1:15 p.m.8 views

CVE-2023-6460

A potential logging of the firestore key via logging within nodejs-firestore exists - Developers who were logging objects through this.settings would be logging the firestore key as well potentially exposing it to anyone with logs read access. We recommend upgrading to version 6.1.0 to avoid this...

5.5CVSS6AI score0.00121EPSS
Exploits0References3
Rows per page
Query Builder