CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-2200

Malicious code in bioql PyPI...

4.8CVSS5AI score0.00333EPSS

Exploits0References5

RedhatCVE•added 2025/05/23 4:36 a.m.•6 views

CVE-2023-41167

@webiny/react-rich-text-renderer before 5.37.2 allows XSS attacks by content managers. This is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. Webiny is an open-source serverless enterprise CMS. The @webiny/react-rich-text-renderer package depends on the...

4.8CVSS5.8AI score0.00333EPSS

Exploits0References1

NVD•added 2023/08/25 2:15 p.m.•8 views

CVE-2023-41167

4.8CVSS4.8AI score0.00333EPSS

Exploits0References2

OSV•added 2023/08/25 2:15 p.m.•9 views

CVE-2023-41167

4.8CVSS5.9AI score

Exploits0References2

ATTACKERKB•added 2023/08/25 2:15 p.m.•1 views

CVE-2023-41167

4.8CVSS5.7AI score0.00333EPSS

Exploits0References3

Prion•added 2023/08/25 2:15 p.m.•12 views

Design/Logic Flaw

4.3CVSS4.7AI score0.00333EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/08/25 12:0 a.m.•10 views

CVE-2023-41167

5.8AI score0.00333EPSS

Exploits0References2

CNNVD•added 2023/08/25 12:0 a.m.•2 views

Webiny-js 跨站脚本漏洞

Webiny-js is open source serverless enterprise CMS. Includes headless CMS, page builder , form builder and file manager . Easy to customize and extend . A security vulnerability exists in Webiny-js 5.37.1 and earlier versions , which stems from a cross-site scripting XSS vulnerability in the...

4.8CVSS4.8AI score0.00333EPSS

Exploits0References3

Cvelist•added 2023/08/25 12:0 a.m.•18 views

CVE-2023-41167

5AI score0.00333EPSS

Exploits0References2

CVE•added 2023/08/25 12:0 a.m.•65 views

CVE-2023-41167

CVE-2023-41167 affects @webiny/react-rich-text-renderer (pre-5.37.2). The vulnerability arises from rendering rich text content via dangerouslySetInnerHTML without HTML sanitization, allowing XSS when a content manager injects malicious input into Webiny CMS/Form Builder data that is later render...

4.8CVSS4.7AI score0.00333EPSS

Exploits0References2Affected Software1

OSV•added 2023/08/24 10:16 p.m.•16 views

GHSA-3X59-VRMC-5MX6 @webiny/react-rich-text-renderer vulnerable to insecure rendering of rich text content

Overview @webiny/react-rich-text-renderer is a react component to render data coming from Webiny Headless CMS and Webiny Form Builder. The @webiny/react-rich-text-renderer package depends on the editor.js rich text editor to handle rich text content. The CMS stores rich text content from the...

4.8CVSS4.8AI score0.00333EPSS

Exploits0References5

Github Security Blog•added 2023/08/24 10:16 p.m.•24 views

@webiny/react-rich-text-renderer vulnerable to insecure rendering of rich text content

4.8CVSS6.6AI score0.00333EPSS

Exploits0References5Affected Software1

vulnersOsv•added 2022/02/01 12:46 a.m.•1 views

@webiny/api-page-builder (>=0.0.0-mt-1 <=5.21.0-beta.0), @webiny/api-page-builder-import-export (>=0.0.0-mt-1 <=5.21.0-beta.0) +5 more potentially affected by CVE-2021-23484 via zip-local (=0.3.4)

zip-local NPM version =0.3.4 is affected by a known vulnerability. The following packages have a transitive dependency on zip-local and may be impacted: - @webiny/api-page-builder =0.0.0-mt-1, =0.0.0-mt-1, =0.0.0-mt-1, =0.0.0-mt-1, =0.0.0-mt-1, =0.1.0, =0.0.2, =0.0.7 Source cves: CVE-2021-23484...

9.8CVSS7.2AI score0.0059EPSS

Exploits1

vulnersOsv•added 2021/12/29 10:46 a.m.•1 views

@webiny/api-page-builder (>=0.0.0-mt-1 <=5.21.0-beta.0), @webiny/api-page-builder-import-export (>=0.0.0-mt-1 <=5.21.0-beta.0) +5 more potentially affected by CVE-2021-23484 via zip-local (=0.3.4)

9.8CVSS7.2AI score0.0059EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by