Lucene search
K

9 matches found

Cvelist
Cvelist
added 2022/03/31 3:15 p.m.47 views

CVE-2022-0350 Cross-site Scripting (XSS) - Stored in vanessa219/vditor

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 3.8.13...

6.1CVSS5.5AI score0.00538EPSS
Exploits1References2
OSV
OSV
added 2022/03/31 3:15 p.m.32 views

CVE-2022-0350 Cross-site Scripting (XSS) - Stored in vanessa219/vditor

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 3.8.13...

6.1CVSS6.1AI score0.00538EPSS
Exploits1References4
NVD
NVD
added 2022/03/14 4:15 a.m.28 views

CVE-2022-0341

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 3.8.12...

6.6CVSS0.00464EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/03/14 4:10 a.m.33 views

CVE-2022-0341 Cross-site Scripting (XSS) - Stored in vanessa219/vditor

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 3.8.12...

6.6CVSS5.5AI score0.00464EPSS
Exploits1References2
Huntr
Huntr
added 2022/01/24 4:11 a.m.35 views

Cross-site Scripting (XSS) - Stored in vanessa219/vditor

Description The Vanessa219/vditor is a markdown editor supported by browsers. If the user passes javascript:alertdocument.domain as the URL value when creating a link using the markdown syntax, there is no sanitizing process and the link is created as it is. Proof of Concept txt XSS PoC : xss 1...

3.5CVSS5.5AI score0.00538EPSS
Exploits1
Huntr
Huntr
added 2022/01/23 3:24 a.m.24 views

Cross-site Scripting (XSS) - Stored in vanessa219/vditor

Description The Vanessa219/vditor is a markdown editor supported by browsers. When a user creates a link using the markdown syntax, the server does not URL-encode the double-quotes, so the user can escape the href attribute and trigger XSS using the on attribute. Proof of Concept txt XSS PoC : xs...

3.5CVSS0.5AI score0.00464EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2022/01/23 2:15 a.m.7 views

CVE-2021-4103

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 1.0.34...

6.8CVSS6.3AI score0.00664EPSS
Exploits1References3
NVD
NVD
added 2022/01/23 2:15 a.m.26 views

CVE-2021-4103

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 1.0.34...

6.8CVSS0.00664EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/01/23 1:45 a.m.28 views

CVE-2021-4103 Cross-site Scripting (XSS) - Stored in vanessa219/vditor

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 1.0.34...

6.8CVSS5.5AI score0.00664EPSS
Exploits1References2
Rows per page
Query Builder