Lucene search
K

5 matches found

CNNVD
CNNVD
added 2026/05/05 12:0 a.m.11 views

Gotenberg 代码问题漏洞

Gotenberg is an open-source, developer-friendly API developed by Gotenberg. It is used to convert various document formats into PDF files. Versions of Gotenberg 8.30.1 and earlier contained code vulnerabilities. These vulnerabilities stemmed from the default private IP denial-of-service list usin...

7.8CVSS5.9AI score0.00463EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/12/26 12:0 a.m.4 views

PT-2025-53448

Name of the Vulnerable Software and Affected Versions Gitea versions prior to 1.20.1 Description A flaw exists in Gitea that allows the use of a forbidden URL scheme, such as javascript:, within a link, which can lead to cross-site scripting XSS. Recommendations Update Gitea to version 1.20.1 or...

5.4CVSS5.9AI score0.00222EPSS
Exploits0References10
CNNVD
CNNVD
added 2025/09/04 12:0 a.m.5 views

Promptcraft Forge Studio 安全漏洞

Promptcraft Forge Studio is a developer toolkit for Marcelo Tessaro Individual Developer. A security vulnerability exists in Promptcraft Forge Studio that stems from an incomplete URL scheme check, which could lead to cross-site scripting attacks...

9.3CVSS5.9AI score0.00264EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/09/07 11:45 a.m.5 views

Mozilla: Full screen notification obscured by external program

The Mozilla Foundation Security Advisory describes this flaw as: A website could have obscured the full screen notification by using a URL with a scheme handled by an external program, such as a mailto URL. This could have led to user confusion and possible spoofing attacks...

6.5CVSS7.3AI score0.00657EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/13 8:44 a.m.4 views

Mozilla: Fullscreen notification obscured

The Mozilla Foundation Security Advisory describes this flaw as: A website could have obscured the fullscreen notification by using a URL with a scheme handled by an external program, such as a mailto URL. This could have led to user confusion and possible spoofing attacks...

6.5CVSS7.2AI score0.00739EPSS
Exploits0References5
Rows per page
Query Builder