7 matches found
EUVD-2022-1658
Malicious code in bioql PyPI...
CVE-2020-28847
Cross Site Scripting XSS vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment...
CVE-2020-28847
Cross Site Scripting XSS vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment...
CVE-2020-28847
Cross Site Scripting XSS vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment...
Cross site scripting
Cross Site Scripting XSS vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment...
CVE-2020-28847
CVE-2020-28847 affects Valine (xCss Valine) 1.4.14 due to insufficient sanitization of the nick parameter in /classes/Comment, enabling cross-site scripting. The issue is documented across multiple feeds; a fix was released in version 1.4.15. Impact is XSS with user-provided nick data stored/echo...
CVE-2020-28847
Cross Site Scripting XSS vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment...