Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2026/02/19 8:30 p.m.9 views

Statamic affected by privilege escalation via stored cross-site scripting

Impact Stored XSS vulnerability in html fieldtypes allow authenticated users with field management permissions to inject malicious JavaScript that executes when viewed by higher-privileged users. Patches This has been fixed in 6.3.2 and 5.73.9...

8.1CVSS5.4AI score0.0028EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/19 7:32 a.m.5 views

CVE-2025-60083

Deserialization of Untrusted Data vulnerability in add-ons.org PDF Invoice Builder for WooCommerce pdf-for-woocommerce allows Object Injection.This issue affects PDF Invoice Builder for WooCommerce: from n/a through = 6.5.0...

8.8CVSS5.9AI score0.00355EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/23 12:0 a.m.3 views

WordPress plugin Nasa Core 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.1CVSS7.7AI score0.00669EPSS
Exploits0References1
CNVD
CNVD
added 2015/02/21 12:0 a.m.4 views

Red Hat JBoss Enterprise Application Platform Role Based Access Control Component Security Bypass Vulnerability

Red Hat JBoss Enterprise Application Platform is an open source, J2EE-based middleware platform for building, deploying, and hosting Java applications and services.JBoss Application Server AS, also known as WildFly is an open source JavaEE-based application server; the JacORB subsystem is a...

4CVSS6.9AI score0.0126EPSS
Exploits0References1
Rows per page
Query Builder