Lucene search
K
GithubRecent

33190 matches found

Github Security Blog
Github Security Blog
added 2026/04/14 11:39 p.m.9 views

pyLoad's Session Not Invalidated After Permission Changes

Summary The pyload application does not properly invalidate or modify sessions upon changes made to a user's permissions. Details Whenever an administrator changes the permissions a specific account has, they do not expect that account still being able to access data that their new permissions do...

5.9AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:38 p.m.12 views

pyLoad has Stale Session Privilege After Role/Permission Change (Privilege Revocation Bypass)

Summary pyLoad caches role and permission in the session at login and continues to authorize requests using these cached values, even after an admin changes the user's role/permissions in the database. As a result, an already logged-in user can keep old revoked privileges until logout/session...

8.8CVSS6.9AI score0.00655EPSS
Exploits2References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:36 p.m.9 views

Craft CMS has a host header injection leading to SSRF via resource-js endpoint

Summary The resource-js endpoint in Craft CMS allows unauthenticated requests to proxy remote JavaScript resources. When trustedHosts is not explicitly restricted default configuration, the application trusts the client-supplied Host header. This allows an attacker to control the derived baseUrl,...

7CVSS5.9AI score0.0026EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:35 p.m.9 views

Server-Side Request Forgery (SSRF) in Craft CMS with Asset Uploads Mutations

Required Permissions The exploitation requires a few permissions to be enabled in the used GraphQL schema: "Edit assets in the volume" "Create assets in the volume" Details The implementation fails to restrict the URL Scheme. While the application is intended to "upload assets", there is no...

7CVSS5.8AI score0.00275EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:34 p.m.7 views

Craft CMS has a Missing Authorization Check on User Group Removal via save-permissions Action

Summary The actionSavePermissions endpoint allows a user with only viewUsers permission to remove arbitrary users from all user groups. While saveUserGroups enforces per-group authorization for additions, it performs no equivalent authorization check for removals, so submitting an empty groups...

5.3CVSS6AI score0.00248EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:34 p.m.14 views

OpenTofu has unbounded memory usage, high CPU usage, or deadlock in "tofu init" with maliciously-crafted dependency responses

Impact Unauthenticated denial of service. Summary When installing module packages from attacker-controlled sources, tofu init may use unbounded memory, cause high CPU usage, or deadlock when encountering maliciously-crafted TLS certificate chains or tar archives. Those who depend on modules or...

7.5CVSS6.5AI score0.00621EPSS
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:33 p.m.11 views

DotNetNuke.Core security code analysis rules triggered

The codebase raises code analysis warnings related to security, including CA3075, CA5366, CA5371, CA5368, CA5369, CA5372, CA5379, CA5350, and CA5351. Most of these deal with disabling DTD processing in XML documents, but also includes cryptographic algorithm choices...

5.8AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:33 p.m.9 views

frp has an authentication bypass in HTTP vhost routing when routeByHTTPUser is used for access control

Summary frp contains an authentication bypass in the HTTP vhost routing path when routeByHTTPUser is used as part of access control. In proxy-style requests, the routing logic uses the username from Proxy-Authorization to select the routeByHTTPUser backend, while the access control check uses...

9.1CVSS5.9AI score0.00269EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:32 p.m.12 views

ImageMagick has a memory leak in PNG encoder when writing a MNG image

When the PNG encoder fails to write an MNG image it can leak memory...

5.8AI score
Exploits0References2Affected Software18
Github Security Blog
Github Security Blog
added 2026/04/14 11:32 p.m.10 views

ImageMagick has out-of-bounds access in ConnectedComponentsImage() via CLI-controlled connected-components:* artifacts

When the connected-components: define specifies an invalid index and out of bound operation will result in an access violation...

7.8CVSS5.8AI score0.00121EPSS
Exploits0References2Affected Software18
Github Security Blog
Github Security Blog
added 2026/04/14 11:32 p.m.8 views

ImageMagick has a heap buffer overflow read in magnify operation via unrecognized magnify:method value

An unrecognized magnify:method will result in an out of bounds read in the magnify operation. ==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x61a000000b30 READ of size 4 at 0x61a000000b30 thread T0...

5.8AI score
Exploits0References2Affected Software18
Github Security Blog
Github Security Blog
added 2026/04/14 11:31 p.m.10 views

ImageMagick has has a stack-buffer-overflow in MNG encoder with oversized pallete

The patch for GHSA-7h7q-j33q-hvpf was incomplete and still allows a stack buffer overflow for the multi frame images...

6AI score
Exploits0References2Affected Software18
Github Security Blog
Github Security Blog
added 2026/04/14 11:31 p.m.11 views

ImageMagick has has an off-by-one origin validation in allows out-of-bounds read in morphology processing

An incorrect morphology would allow an out of bounds read of a single pixel. ==1200284==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x5100000002d0 at pc 0x59e28e60c27a bp 0x7fff047fd8e0 sp 0x7fff047fd8d0 READ of size 4 at 0x5100000002d0 thread T0...

5.8AI score
Exploits0References2Affected Software18
Github Security Blog
Github Security Blog
added 2026/04/14 11:31 p.m.9 views

ImageMagick has a heap-buffer-overflow in FTXT encoder

The FTXT encoder lacks a boundary check when parsing ftxt:format, resulting in an out of bounds read. ==3040863==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x5020000085b2 at pc 0x606c1ee0c6ce bp 0x7ffee30d6150 sp 0x7ffee30d6148 READ of size 1 at 0x5020000085b2 thread T0...

5.8AI score
Exploits0References2Affected Software18
Github Security Blog
Github Security Blog
added 2026/04/14 11:31 p.m.8 views

Microsoft Security Advisory CVE-2026-26171 – .NET Denial of Service Vulnerability

Executive Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in System.Security.Cryptography.Xml. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A vulnerability exists in...

7.5CVSS6.2AI score0.01753EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:30 p.m.63 views

Microsoft Security Advisory CVE-2026-33116 – .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

Executive Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in System.Security.Cryptography.Xml. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A vulnerability exists in...

7.5CVSS6.2AI score0.02142EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:27 p.m.15 views

Microsoft Security Advisory CVE-2026-32178 – .NET Spoofing Vulnerability

Executive Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 8.0, .NET 9.0, and .NET 10.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A vulnerability exists in...

7.5CVSS6.2AI score0.02279EPSS
Exploits0References5Affected Software12
Github Security Blog
Github Security Blog
added 2026/04/14 11:27 p.m.11 views

WWBN AVideo has an incomplete fix for CVE-2026-33502: Command Injection

Summary The incomplete fix for AVideo's test.php adds escapeshellarg for wget but leaves the filegetcontents and curl code paths unsanitized, and the URL validation regex /^http/ accepts strings like httpevil.com. Affected Package - Ecosystem: Other - Package: AVideo - Affected versions: = commit...

9.3CVSS6.7AI score0.00442EPSS
Exploits2References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:25 p.m.10 views

WWBN AVideo has an incomplete fix for CVE-2026-33500: XSS

Summary The incomplete XSS fix in AVideo's ParsedownSafeWithLinks class overrides inlineMarkup for raw HTML but does not override inlineLink or inlineUrlTag, allowing javascript: URLs in markdown link syntax to bypass sanitization. Affected Package - Ecosystem: Other - Package: AVideo - Affected...

5.4CVSS5.8AI score0.00218EPSS
Exploits2References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:23 p.m.12 views

WWBN AVideo has an Incomplete fix: Directory traversal bypass via query string in ReceiveImage downloadURL parameters

Summary The directory traversal fix introduced in commit 2375eb5e0 for objects/aVideoEncoderReceiveImage.json.php only checks the URL path component via parseurl$url, PHPURLPATH for .. sequences. However, the downstream function trygetcontentsfromlocal in objects/functionsFile.php uses...

6.5CVSS5.9AI score0.00718EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:23 p.m.8 views

Novu has a XSS sanitization bypass

Summary XSS sanitization is incomplete, some attributes are missing such as oncontentvisibilityautostatechange=. This allows for the email preview to render HTML that executes arbitrary JavaScript, Details Sanitization is implemented here:...

6AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:22 p.m.13 views

Novu has SSRF via conditions filter webhook bypasses validateUrlSsrf() protection

Summary The conditions filter webhook at libs/application-generic/src/usecases/conditions-filter/conditions-filter.usecase.ts line 261 sends POST requests to user-configured URLs using raw axios.post with no SSRF validation. The HTTP Request workflow step in the same codebase correctly uses...

6AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:22 p.m.11 views

WWBN AVideo has Stored XSS via Unanchored Duration Regex in Video Encoder Receiver

Summary The isValidDuration regex at objects/video.php:918 uses /^0-91,2:0-91,2:0-91,2/ without a $ end anchor, allowing arbitrary HTML/JavaScript to be appended after a valid duration prefix. The crafted duration is stored in the database and rendered without HTML escaping via echo...

5.4CVSS6AI score0.00173EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:22 p.m.12 views

WWBN AVideo has a SSRF via same-domain hostname with alternate port bypasses isSSRFSafeURL

Summary The isSSRFSafeURL function in objects/functions.php contains a same-domain shortcircuit lines 4290-4296 that allows any URL whose hostname matches webSiteRootURL to bypass all SSRF protections. Because the check compares only the hostname and ignores the port, an attacker can reach...

7.7CVSS5.8AI score0.003EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:21 p.m.14 views

WWBN AVideo has an incomplete fix for CVE-2026-33293: Path Traversal

Summary The incomplete fix for AVideo's CloneSite deleteDump parameter does not apply path traversal filtering, allowing unlink of arbitrary files via ../../ sequences in the GET parameter. Affected Package - Ecosystem: Other - Package: AVideo - Affected versions: = commit 941decd6d19e Details At...

8.1CVSS5.9AI score0.00505EPSS
Exploits2References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:18 p.m.8 views

WWBN AVideo has a CORS Origin Reflection Bypass via plugin/API/router.php and allowOrigin(true) Exposes Authenticated API Responses

Summary The CORS origin validation fix in commit 986e64aad is incomplete. Two separate code paths still reflect arbitrary Origin headers with credentials allowed for all /api/ endpoints: 1 plugin/API/router.php lines 4-8 unconditionally reflect any origin before application code runs, and 2...

7.1CVSS6.1AI score0.00132EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:18 p.m.8 views

WWBN AVideo has CORS Origin Reflection with Credentials on Sensitive API Endpoints Enables Cross-Origin Account Takeover

Summary The allowOrigin$allowAll=true function in objects/functions.php reflects any arbitrary Origin header back in Access-Control-Allow-Origin along with Access-Control-Allow-Credentials: true. This function is called by both plugin/API/get.json.php and plugin/API/set.json.php — the primary API...

8.1CVSS5.9AI score0.00335EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:15 p.m.10 views

WWBN AVideo has an incomplete fix for CVE-2026-33039: SSRF

Summary The incomplete SSRF fix in AVideo's LiveLinks proxy adds isSSRFSafeURL validation but leaves DNS TOCTOU vulnerabilities where DNS rebinding between validation and the actual HTTP request redirects traffic to internal endpoints. Affected Package - Ecosystem: Other - Package: AVideo -...

8.6CVSS5.8AI score0.00453EPSS
Exploits2References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:15 p.m.7 views

Oxia's TLS CA certificate chain validation fails with multi-certificate PEM bundles

Summary The trustedCertPool function in the TLS configuration only parses the first PEM block from CA certificate files. When a CA bundle contains multiple certificates e.g., intermediate + root CA, only the first certificate is loaded. This silently breaks certificate chain validation for mTLS...

6.9CVSS5.8AI score0.0016EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:15 p.m.8 views

Oxia affected by server crash via race condition in session heartbeat handling

Summary A race condition between session heartbeat processing and session closure can cause the server to panic with send on closed channel. The heartbeat method uses a blocking channel send while holding a mutex, and under specific timing with concurrent close calls, this can lead to either a...

8.7CVSS6AI score0.00202EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:14 p.m.8 views

Oxia has an OIDC token audience validation bypass via SkipClientIDCheck

Summary The OIDC authentication provider unconditionally sets SkipClientIDCheck: true in the go-oidc verifier configuration, disabling the standard audience aud claim validation at the library level. This allows tokens issued for unrelated services by the same OIDC issuer to be accepted by Oxia...

9.2CVSS5.8AI score0.00255EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:14 p.m.11 views

Oxia exposes bearer token in debug log messages on authentication failure

Summary When OIDC authentication fails, the full bearer token is logged at DEBUG level in plaintext. If debug logging is enabled in production, JWT tokens are exposed in application logs and any connected log aggregation system. Impact An attacker with access to application logs e.g., via a...

8.7CVSS5.9AI score0.00308EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:13 p.m.10 views

Giskard has Unsandboxed Jinja2 Template Rendering in ConformityCheck

Summary The ConformityCheck class in giskard-checks rendered the rule parameter through Jinja2's default Template constructor. Because the rule string is silently interpreted as a Jinja2 template, a developer may not realize that template expressions embedded in rule definitions are evaluated at...

7.8CVSS6.1AI score0.00144EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:13 p.m.10 views

Giskard has a Regular Expression Denial of Service (ReDoS) in RegexMatching Check

Summary The RegexMatching check in the giskard-checks package passes a user-supplied regular expression pattern directly to Python's re.search without any timeout, complexity guard, or pattern validation. An attacker who can control the regex pattern or the text being matched can craft inputs tha...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:13 p.m.7 views

CAPTCHA Bypass in WWBN/AVideo via Attacker-Controlled Length Parameter and Missing Token Invalidation on Failure

Summary objects/getCaptcha.php accepts the CAPTCHA length ql directly from the query string with no clamping or sanitization, letting any unauthenticated client force the server to generate a 1-character CAPTCHA word. Combined with a case-insensitive strcasecmp comparison over a 33-character...

5.3CVSS5.9AI score0.00218EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:13 p.m.7 views

WWBN AVideo is missing CSRF protection in objects/commentDelete.json.php enables mass comment deletion against moderators and content creators

Summary objects/commentDelete.json.php is a state-mutating JSON endpoint that deletes comments but performs no CSRF validation. It does not call forbidIfIsUntrustedRequest, does not verify a CSRF/global token, and does not check Origin/Referer. Because AVideo intentionally sets...

5.4CVSS5.5AI score0.00113EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:12 p.m.9 views

WWBN AVideo: Missing CSRF Protection on State-Changing JSON Endpoints Enables Forced Comment Creation, Vote Manipulation, and Category Asset Deletion

Summary Multiple AVideo JSON endpoints under objects/ accept state-changing requests via $REQUEST/$GET and persist changes tied to the caller's session user, without any anti-CSRF token, origin check, or referer check. A malicious page visited by a logged-in victim can silently: 1. Cast/flip the...

5.4CVSS5.9AI score0.00115EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:12 p.m.9 views

WWBN AVideo has Multiple CSRF Vulnerabilities in Admin JSON Endpoints (Category CRUD, Plugin Update Script)

Summary Three admin-only JSON endpoints — objects/categoryAddNew.json.php, objects/categoryDelete.json.php, and objects/pluginRunUpdateScript.json.php — enforce only a role check Category::canCreateCategory / User::isAdmin and perform state-changing actions against the database without calling...

7.1CVSS6.1AI score0.00166EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:12 p.m.7 views

WWBN AVideo has CSRF in configurationUpdate.json.php Enables Full Site Configuration Takeover Including Encoder URL and SMTP Credentials

Summary objects/configurationUpdate.json.php also routed via /updateConfig persists dozens of global site settings from $POST but protects the endpoint only with User::isAdmin. It does not call forbidIfIsUntrustedRequest, does not verify a globalToken, and does not validate the Origin/Referer...

8.3CVSS5.9AI score0.00173EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 11:12 p.m.8 views

SiYuan has incomplete fix for CVE-2026-33066: XSS

Summary The incomplete fix for SiYuan's bazaar README rendering enables the Lute HTML sanitizer but fails to block tags, allowing stored XSS via srcdoc attributes containing embedded scripts that execute in the Electron context. Affected Package - Ecosystem: Go - Package:...

9CVSS7AI score0.00584EPSS
Exploits2References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 10:53 p.m.16 views

Unauthenticated Open Redirect, Arbitrary HTTP Response Header Injection, Missing CSRF, and Invisible-Mode Bypass in goshs `/?redirect` endpoint

Summary The GET /?redirect endpoint in goshs v2.0.0-beta.6 performs an HTTP redirect to any attacker-supplied url= value and writes any attacker-supplied header=Name: Value pair into the response, without scheme/host validation, without a header-name allow-list, without authentication in the...

6AI score
Exploits0References2Affected Software2
Github Security Blog
Github Security Blog
added 2026/04/14 10:50 p.m.7 views

WWBN AVideo YPTSocket WebSocket Broadcast Relay Leads to Unauthenticated Cross-User JavaScript Execution via Client-Side eval() Sinks

Summary The YPTSocket plugin's WebSocket server relays attacker-supplied JSON message bodies to every connected client without sanitizing the msg or callback fields. On the client side, plugin/YPTSocket/script.js contains two eval sinks fed directly by those relayed fields...

10CVSS6AI score0.00645EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 10:49 p.m.8 views

WWBN AVideo has a Path Traversal in Locale Save Endpoint Enables Arbitrary PHP File Write to Any Web-Accessible Directory (RCE)

Summary The locale save endpoint locale/save.php constructs a file path by directly concatenating $POST'flag' into the path at line 30 without any sanitization. The $POST'code' parameter is then written verbatim to that path via fwrite at line 40. An admin attacker or any user who can CSRF an...

8.7CVSS6.1AI score0.00656EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 10:49 p.m.9 views

WWBN AVideo has an Unauthenticated Information Disclosure via git.json.php Exposes Developer Emails and Deployed Version

Summary The file git.json.php at the web root executes git log -1 and returns the full output as JSON to any unauthenticated user. This exposes the exact deployed commit hash enabling version fingerprinting against known CVEs, developer names and email addresses PII, and commit messages which may...

5.3CVSS5.9AI score0.0025EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 10:49 p.m.10 views

WWBN AVideo has an IDOR in Live Restreams list.json.php Exposes Other Users' Stream Keys and OAuth Tokens

Summary The endpoint plugin/Live/view/Liverestreams/list.json.php contains an Insecure Direct Object Reference IDOR vulnerability that allows any authenticated user with streaming permission to retrieve other users' live restream configurations, including third-party platform stream keys and OAut...

6.5CVSS6AI score0.00269EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 10:38 p.m.8 views

Go Markdown has an Out-of-bounds Read in SmartypantsRenderer

Summary Processing a malformed input containing a character anywhere in the remaining text with a SmartypantsRenderer will lead to Out of Bounds read or a panic. Details The smartLeftAngle function in html/smartypants.go:367-376 performs an out-of-bounds slice operation when processing a characte...

7.5CVSS5.8AI score0.00346EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 10:38 p.m.12 views

@vendure/core has a SQL Injection vulnerability

Summary An unauthenticated SQL injection vulnerability exists in the Vendure Shop API. A user-controlled query string parameter is interpolated directly into a raw SQL expression without parameterization or validation, allowing an attacker to execute arbitrary SQL against the database. This affec...

9.1CVSS6.2AI score0.01762EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 10:37 p.m.8 views

Kyverno has SSRF via CEL http.Get/http.Post in NamespacedValidatingPolicy allows cross-namespace data access

Summary A Server-Side Request Forgery SSRF vulnerability in Kyverno's CEL HTTP library pkg/cel/libs/http/ allows users with namespace-scoped policy creation permissions to make arbitrary HTTP requests from the Kyverno admission controller. This enables unauthorized access to internal services in...

9.8CVSS6.2AI score0.00705EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/14 10:34 p.m.9 views

XWiki's REST APIs can list all pages/spaces, leading to unavailability

Impact REST API endpoints like /xwiki/rest/wikis/xwiki/spaces/AnnotationCode/pages/AnnotationConfig/objects/AnnotationCode.AnnotationConfig/0/properties list all available pages as part of the metadata for database list properties, which can exhaust available resources on large wikis. Patches Thi...

8.2CVSS5.7AI score0.00405EPSS
Exploits0References5Affected Software2
Github Security Blog
Github Security Blog
added 2026/04/14 10:33 p.m.9 views

XWiki has Reflected Cross-Site Scripting (XSS) in page history compare

Impact A reflected cross-site scripting vulnerability XSS in the compare view between revisions of a page allows executing JavaScript code in the user's browser. If the current user is an admin, this can not only affect the current user but also the confidentiality, integrity and availability of...

6.5CVSS5.7AI score0.00549EPSS
Exploits0References5Affected Software1
Total number of security vulnerabilities33190