Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-6873

Malware in sbrugna...

9.8CVSS9.5AI score0.01919EPSS
Exploits1References4
Drupal
Drupal
added 2025/08/27 12:0 a.m.11 views

Facets - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-100

This module enables you to to easily create and manage faceted search interfaces. The module doesn’t sufficiently filter certain user-provided text leading to a cross site scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker must have a role with the permissio...

6.1CVSS5AI score0.00177EPSS
Exploits0References5
OSV
OSV
added 2025/06/25 6:41 p.m.8 views

DRUPAL-CONTRIB-2025-078

GLightbox module is a pure Javascript lightbox for CKEditor. The module doesn't sufficiently filter user-supplied text for the GLightbox Javascript library leading to a Cross Site Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker must have a role with the...

6.1CVSS6.1AI score0.00183EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/22 12:0 a.m.2 views

Apache Syncope 输入验证错误漏洞

Apache Syncope is the United States Apache Apache Foundation's set of open source digital identity management system for use in enterprise environments. The system supports identity management, role configuration and more. Apache Syncope suffers from an input validation error vulnerability that c...

5.4CVSS6.9AI score0.00702EPSS
Exploits0References3
GitLab Advisory Database
GitLab Advisory Database
added 2013/12/06 12:0 a.m.35 views

XSS Vulnerability in simple_format helper

The simpleformat helper converts user supplied text into html text which is intended to be safe for display. A change made to the implementation of this helper means that any user provided HTML attributes will not be escaped correctly. As a result of this error, applications which pass...

4.3CVSS0.9AI score0.01963EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder