GHSA-RHM7-7469-RCPW Persistent Cross-site Scripting in eZ Platform Rich Text Field Type

Impact The validator for the RichText fieldtype blocklists javascript: and vbscript: in links to prevent XSS. This can leave other options open, and the check can be circumvented using upper case. Content editing permissions for RichText content is required to exploit this vulnerability, which...

Persistent Cross-site Scripting in Ibexa RichText Field Type

Impact The validator for the RichText fieldtype blocklists javascript: and vbscript: in links to prevent XSS. This can leave other options open, and the check can be circumvented using upper case. Content editing permissions for RichText content is required to exploit this vulnerability, which...

PT-2024-34153 · Symfony +5 · Symfony/Validator +5

Name of the Vulnerable Software and Affected Versions: symfony/validator versions 5.4.43, 6.4.11, and 7.1.4 Description: The symfony/validator module in the Symphony PHP framework is vulnerable to a regex bypass issue. It is possible to trick a Validator configured with a regular expression using...

Cross-Site Scripting (XSS)

typo3/cms is vulnerable to Cross-Site Scripting XSS. The vulnerability is caused due to a lack of sanitization of content from editors. This allows attackers with valid editor accounts to inject malicious scripts into content scanned by the link validator component...

Unspecified Vulnerability in RADIUS Protocol under RFC 2865

RADIUS Protocol under RFC 2865 is an RFC open source networking protocol. A security vulnerability exists in RADIUS Protocol under RFC 2865, which can be exploited by an attacker to modify any valid response Access-Accept, Access-Reject, or Access-Challenge to any other response using a Choice...

OPENSUSE-SU-2024:14152-1 python310-openapi-spec-validator-0.7.1-1.3 on GA media

These are all security issues fixed in the python310-openapi-spec-validator-0.7.1-1.3 package on the GA media of openSUSE Tumbleweed...

GO-2024-2927 Evmos is missing create validator check in github.com/evmos/evmos

Evmos is missing create validator check in github.com/evmos/evmos...

Malicious code in attr-validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-6718 Malicious code in attr-validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in at-least_one_existence_validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-6712 Malicious code in at-least_one_existence_validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in association-validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-6709 Malicious code in association-validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in area-code_validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in android-string_resources_validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in age-validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-6529 Malicious code in age-validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in address-validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-6511 Malicious code in address-validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in activerecord-json_validator (RubyGems)

--- -= Per source details. Do not edit below this line.=-...