Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-2200

Malicious code in bioql PyPI...

4.8CVSS5AI score0.0034EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 4:36 a.m.10 views

CVE-2023-41167

@webiny/react-rich-text-renderer before 5.37.2 allows XSS attacks by content managers. This is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. Webiny is an open-source serverless enterprise CMS. The @webiny/react-rich-text-renderer package depends on the...

4.8CVSS5.8AI score0.0034EPSS
Exploits0References1
NVD
NVD
added 2023/08/25 2:15 p.m.27 views

CVE-2023-41167

@webiny/react-rich-text-renderer before 5.37.2 allows XSS attacks by content managers. This is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. Webiny is an open-source serverless enterprise CMS. The @webiny/react-rich-text-renderer package depends on the...

4.8CVSS4.8AI score0.0034EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/08/25 2:15 p.m.5 views

CVE-2023-41167

@webiny/react-rich-text-renderer before 5.37.2 allows XSS attacks by content managers. This is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. Webiny is an open-source serverless enterprise CMS. The @webiny/react-rich-text-renderer package depends on the...

4.8CVSS5.7AI score0.0034EPSS
Exploits0References3
Prion
Prion
added 2023/08/25 2:15 p.m.14 views

Design/Logic Flaw

@webiny/react-rich-text-renderer before 5.37.2 allows XSS attacks by content managers. This is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. Webiny is an open-source serverless enterprise CMS. The @webiny/react-rich-text-renderer package depends on the...

4.3CVSS4.7AI score0.0034EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/08/25 12:0 a.m.7 views

Webiny-js 跨站脚本漏洞

Webiny-js is open source serverless enterprise CMS. Includes headless CMS, page builder , form builder and file manager . Easy to customize and extend . A security vulnerability exists in Webiny-js 5.37.1 and earlier versions , which stems from a cross-site scripting XSS vulnerability in the...

4.8CVSS4.8AI score0.0034EPSS
Exploits0References3
CVE
CVE
added 2023/08/25 12:0 a.m.76 views

CVE-2023-41167

CVE-2023-41167 affects @webiny/react-rich-text-renderer (pre-5.37.2). The vulnerability arises from rendering rich text content via dangerouslySetInnerHTML without HTML sanitization, allowing XSS when a content manager injects malicious input into Webiny CMS/Form Builder data that is later render...

4.8CVSS4.7AI score0.0034EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/08/25 12:0 a.m.11 views

CVE-2023-41167

@webiny/react-rich-text-renderer before 5.37.2 allows XSS attacks by content managers. This is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. Webiny is an open-source serverless enterprise CMS. The @webiny/react-rich-text-renderer package depends on the...

4.8CVSS5.9AI score0.0034EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/08/25 12:0 a.m.11 views

CVE-2023-41167

@webiny/react-rich-text-renderer before 5.37.2 allows XSS attacks by content managers. This is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. Webiny is an open-source serverless enterprise CMS. The @webiny/react-rich-text-renderer package depends on the...

5.8AI score0.0034EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/08/25 12:0 a.m.28 views

CVE-2023-41167

@webiny/react-rich-text-renderer before 5.37.2 allows XSS attacks by content managers. This is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. Webiny is an open-source serverless enterprise CMS. The @webiny/react-rich-text-renderer package depends on the...

5AI score0.0034EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2023/08/24 10:16 p.m.30 views

@webiny/react-rich-text-renderer vulnerable to insecure rendering of rich text content

Overview @webiny/react-rich-text-renderer is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. The @webiny/react-rich-text-renderer package depends on the editor.js rich text editor to handle rich text content. The CMS stores rich text content from the...

4.8CVSS6.6AI score0.0034EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2023/08/24 10:16 p.m.48 views

GHSA-3X59-VRMC-5MX6 @webiny/react-rich-text-renderer vulnerable to insecure rendering of rich text content

Overview @webiny/react-rich-text-renderer is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. The @webiny/react-rich-text-renderer package depends on the editor.js rich text editor to handle rich text content. The CMS stores rich text content from the...

4.8CVSS4.8AI score0.0034EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2022/02/01 12:46 a.m.10 views

@webiny/api-page-builder (>=0.0.0-mt-1 <=5.21.0-beta.0), @webiny/api-page-builder-import-export (>=0.0.0-mt-1 <=5.21.0-beta.0) +5 more potentially affected by CVE-2021-23484 via zip-local (=0.3.4)

zip-local NPM version =0.3.4 is affected by a known vulnerability. The following packages have a transitive dependency on zip-local and may be impacted: - @webiny/api-page-builder =0.0.0-mt-1, =0.0.0-mt-1, =0.0.0-mt-1, =0.0.0-mt-1, =0.0.0-mt-1, =0.1.0, =0.0.2, =0.0.7 Source cves: CVE-2021-23484...

9.8CVSS7.2AI score0.0205EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/12/29 10:46 a.m.5 views

@webiny/api-page-builder (>=0.0.0-mt-1 <=5.21.0-beta.0), @webiny/api-page-builder-import-export (>=0.0.0-mt-1 <=5.21.0-beta.0) +5 more potentially affected by CVE-2021-23484 via zip-local (=0.3.4)

zip-local NPM version =0.3.4 is affected by a known vulnerability. The following packages have a transitive dependency on zip-local and may be impacted: - @webiny/api-page-builder =0.0.0-mt-1, =0.0.0-mt-1, =0.0.0-mt-1, =0.0.0-mt-1, =0.0.0-mt-1, =0.1.0, =0.0.2, =0.0.7 Source cves: CVE-2021-23484...

9.8CVSS7.2AI score0.0205EPSS
Exploits1
Rows per page
Query Builder