Lucene search
K

8 matches found

EUVD
EUVD
added 2026/06/25 12:33 a.m.3 views

EUVD-2026-39100

Tiptap for PHP before version 2.1.1 contains an input validation vulnerability that allows authenticated attackers to cause a denial of service by submitting Tiptap JSON with the attrs.href field set to an array instead of a string, causing an unhandled TypeError in the Link::isAllowedUri functio...

7.1CVSS5.9AI score0.00305EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/24 9:21 p.m.5 views

CVE-2026-47110

Tiptap for PHP before version 2.1.1 contains an input validation vulnerability that allows authenticated attackers to cause a denial of service by submitting Tiptap JSON with the attrs.href field set to an array instead of a string, causing an unhandled TypeError in the Link::isAllowedUri functio...

7.1CVSS5.9AI score0.00305EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-27042

Malicious code in bioql PyPI...

5.5CVSS6.4AI score0.00084EPSS
Exploits0References2
Huntr
Huntr
added 2021/12/25 7:53 a.m.43 views

Cross-site Scripting (XSS) - Stored in chatwoot/chatwoot

Title Stored XSS in customattributes Description Relying on frontend URI check without verifying it on the backend allows to inject arbitrary JS code. Steps to reproduce 1. 1. Create a custom attribute, set its type to Link 2. 2. Navigate to any conversation, click on the right sidebar. 3. 3...

4.3CVSS0.9AI score0.00856EPSS
Exploits1
NVD
NVD
added 2006/06/09 1:2 a.m.11 views

CVE-2006-2920

Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character...

2.6CVSS6.6AI score0.01435EPSS
Exploits0References7
OSV
OSV
added 2006/06/09 1:2 a.m.6 views

CVE-2006-2920

Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character...

6.6AI score
Exploits0References8
UbuntuCve
UbuntuCve
added 2006/06/09 1:2 a.m.22 views

CVE-2006-2920

Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character...

2.6CVSS5.9AI score0.01435EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/06/09 1:0 a.m.21 views

CVE-2006-2920

Sylpheed-Claws before 2.2.2 and Sylpheed before 2.2.6 allow remote attackers to bypass the URI check functionality and makes it easier to conduct phishing attacks via a URI that begins with a space character...

6.6AI score0.01435EPSS
Exploits0References7
Rows per page
Query Builder