Lucene search
+L

121 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-53141

Malicious code in bioql PyPI...

6.5CVSS7.8AI score0.00428EPSS
Exploits0References3
Gitee
Gitee
added 2025/07/27 4:3 a.m.109 views

command-injection-payload-list

It is an offensive tool for web application security. The primary CVE ID is not explicitly mentioned, but the description pertains to OS command injection vulnerabilities. The target product/service is web applications, and the vulnerability class/vector is OS command injection. Notable...

7.7AI score
Exploits0
Packet Storm
Packet Storm
added 2025/05/23 12:0 a.m.92 views

📄 ABB Cylon Aspect 3.08.03 Java/PHP Log Forging

Multiple PHP and Java components across the system fail to properly sanitize user-supplied input before including it in application logs. In PHP, files like supervisorProxy.php directly embed values such as $SERVER'REQUESTURI' and raw POST bodies into log messages without filtering, enabling...

6.9CVSS6.5AI score0.00316EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/05/22 10:54 p.m.6 views

CVE-2022-31743

Firefox's HTML parser did not correctly interpret HTML comment tags, resulting in an incongruity with other browsers. This could have been used to escape HTML comments on pages that put user-controlled data in them. This vulnerability affects Firefox 101...

6.5CVSS6AI score0.00428EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:1 p.m.5 views

CVE-2020-26227

TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 9.5.23 and 10.4.10 the system extension Fluid typo3/cms-fluid of the TYPO3 core is vulnerable to cross-site scripting passing user-controlled data as argument to Fluid view helpers. Update to TYPO3 versions...

6.1CVSS6.2AI score0.00715EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 8:52 a.m.10 views

CVE-2019-8135

A remote code execution vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. Dependency injection through Symphony framework allows service identifiers to be derived from user controlled data, which can lead to remote code execution...

9.8CVSS7.9AI score0.02455EPSS
Exploits0References1
OSV
OSV
added 2025/03/31 4:17 p.m.14 views

CVE-2025-30223 Beego allows Reflected/Stored XSS in Beego's RenderForm() Function Due to Unescaped User Input

Beego is an open-source web framework for the Go programming language. Prior to 2.3.6, a Cross-Site Scripting XSS vulnerability exists in Beego's RenderForm function due to improper HTML escaping of user-controlled data. This vulnerability allows attackers to inject malicious JavaScript code that...

9.3CVSS6.7AI score0.0059EPSS
Exploits1References4
OSV
OSV
added 2025/02/25 5:49 p.m.56 views

GHSA-HW62-58PR-7WC5 DOM Expressions has a Cross-Site Scripting (XSS) vulnerability due to improper use of string.replace

!NOTE This advisory was originally emailed to [email protected] by @nsysean. To sum it up, the use of javascript's .replace opens up to potential XSS vulnerabilities with the special replacement patterns beginning with $. Particularly, when the attributes of Meta tag from solid-meta are...

7.3CVSS6.3AI score0.00256EPSS
Exploits0References4
NVD
NVD
added 2025/02/21 10:15 p.m.42 views

CVE-2025-27108

dom-expressions is a Fine-Grained Runtime for Performant DOM Rendering. In affected versions the use of javascript's .replace opens up to potential Cross-site Scripting XSS vulnerabilities with the special replacement patterns beginning with $. Particularly, when the attributes of Meta tag from...

7.3CVSS0.00256EPSS
Exploits0References2
CVE
CVE
added 2025/02/21 9:9 p.m.91 views

CVE-2025-27108

CVE-2025-27108 affects dom-expressions. The vulnerability arises from using JavaScript String.replace with special replacement patterns (notably $' and $�60) when injecting assets into HTML headers via solid-meta, where user-controlled attributes (Meta tags) can be manipulated to achieve XSS. Thi...

7.3CVSS7AI score0.00256EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/02/21 9:9 p.m.21 views

CVE-2025-27108 Cross-site Scripting vulnerability due to improper use of string.replace in dom-expressions

dom-expressions is a Fine-Grained Runtime for Performant DOM Rendering. In affected versions the use of javascript's .replace opens up to potential Cross-site Scripting XSS vulnerabilities with the special replacement patterns beginning with $. Particularly, when the attributes of Meta tag from...

7.3CVSS6.3AI score0.00256EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/02/05 7:38 p.m.20 views

CVE-2022-39298

MelisFront is the engine that displays website hosted on Melis Platform. It deals with showing pages, plugins, URL rewritting, search optimization and SEO, etc. Attackers can deserialize arbitrary data on affected versions of melisplatform/melis-front, and ultimately leads to the execution of...

9.8CVSS7AI score0.0094EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/12/17 12:15 p.m.12 views

CVE-2024-8475

Authentication Bypass by Assumed-Immutable Data vulnerability in Digital Operation Services WiFiBurada allows Manipulating User-Controlled Variables. This issue affects WiFiBurada: before 1.0.5...

6.5CVSS5.8AI score0.00376EPSS
Exploits0References3
OSV
OSV
added 2024/08/20 8:56 p.m.19 views

CVE-2024-42361 GHSL-2023-256: HertzBeat Authenticated (guest role) SQL injection in /api/monitor/{monitorId}/metric/{metricFull}

Hertzbeat is an open source, real-time monitoring system. Hertzbeat 1.6.0 and earlier declares a /api/monitor/monitorId/metric/metricFull endpoint to download job metrics. In the process, it executes a SQL query with user-controlled data, allowing for SQL injection...

7.5CVSS9.3AI score0.0108EPSS
Exploits1References6
Veracode
Veracode
added 2024/07/16 7:18 a.m.13 views

Remote Code Execution (RCE)

torrentpier/torrentpier is vulnerable to Remote Code Execution RCE. The vulnerability is due to the unsafe handling of user-controlled data specifically cookies within the gettracks function in torrentpier/library/includes/functions.php, where unsafe usage of PHP's native serialization format...

9.8CVSS8.1AI score0.00995EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2024/06/27 1:6 p.m.7 views

golang: html/template: errors returned from MarshalJSON methods may break template escaping

A flaw was found in Go's html/template standard library package. If errors returned from MarshalJSON methods contain user-controlled data, they may be used to break the contextual auto-escaping behavior of the html/template package, allowing subsequent actions to inject unexpected content into...

5.4CVSS7.2AI score0.00795EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2024/05/27 5:15 p.m.16 views

CVE-2024-35231

rack-contrib provides contributed rack middleware and utilities for Rack, a Ruby web server interface. Versions of rack-contrib prior to 2.5.0 are vulnerable to denial of service due to the fact that the user controlled data profilerruns was not constrained to any limitation. This would lead to...

8.6CVSS7.2AI score0.00662EPSS
Exploits0References4
OSV
OSV
added 2024/05/27 4:40 p.m.13 views

CVE-2024-35231 rack-contrib vulnerable to Denial of Service due to the unconstrained value of the incoming "profiler_runs" parameter

rack-contrib provides contributed rack middleware and utilities for Rack, a Ruby web server interface. Versions of rack-contrib prior to 2.5.0 are vulnerable to denial of service due to the fact that the user controlled data profilerruns was not constrained to any limitation. This would lead to...

8.6CVSS8.3AI score0.00662EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/15 12:0 a.m.2 views

PT-2024-40457 · Laravel · Laravel

Name of the Vulnerable Software and Affected Versions: Laravel versions prior to 4.1.29 Description: The issue concerns mass assignment vulnerabilities in Laravel when not using the fillable property on models or when using guarded and passing user-controlled arrays into update or save functions...

7.3AI score
Exploits0References5
Veracode
Veracode
added 2024/03/17 5:29 p.m.20 views

Sensitive Information Disclosure

go is vulnerable to Sensitive Information Disclosure. The vulnerability is due to errors returned from MarshalJSON methods containing user-controlled data, which can break contextual auto-escaping behavior, leading to unexpected content injection into templates...

5.4CVSS7.3AI score0.00795EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder