Cross-Site Scripting

typo3/cms is vulnerable to Cross-Site Scripting. The vulnerability is due to improper sanitization within the bookmark toolbar, which allows attackers to execute arbitrary scripts in the context of the user's browser session...

Denial Of Service (DOS)

pimcore/pimcore is vulnerable to Denial Of Service. The vulnerability due to the lack of restrictions on the scaling factors that can be applied to image thumbnails, potentially creating disproportionately large files or overwhelming server CPU resources...

Information Disclosure

TYPO3/CMS is vulnerable to Information Disclosure. This vulnerability arises from insufficient validation and handling of uploaded files within forms. It may result in arbitrary file disclosure or unauthorized access to sensitive system files...

Improper Input Validation

actionpack is vulnerable to Improper Input Validation. The vulnerability is due to improper handling of security headers for non-HTML content types, which allows an attacker to potentially bypass security restrictions by sending specially crafted requests that exploit the lack of these security...

Cross-site Scripting(XSS)

actiontext is vulnerable to Cross-site Scripting XSS. The vulnerability is due to the lack of sanitization of HTML content within instances of ActionText::Attachable::ContentAttachment included in a richtextarea tag, which results in unsanitized HTML rendering...

Out-of-Bounds-Read

org.iq80.snappy: snappy is vulnerable to Out-of-Bounds-Read. The vulnerability is due to the usage of the JDK class sun.misc.Unsafe to speed up memory access without performing additional bounds checks, which can result in non-deterministic behavior or a JVM crash...

Denial Of Service (DoS)

directus is vulnerable to Denial Of Service DoS. The vulnerability is caused by providing a non-numeric length value to the random string generation utility, which prevents the generation of random session IDs, resulting in Denial Of Service DoS...

Path Traversal

lollms is vulnerable to Path Traversal. The vulnerability is due to improper handling of user-supplied input in the 'listpersonalities' endpoint, allowing an attacker to traverse directories and view the contents of subfolders by manipulating the 'category' parameter in an HTTP request...

Cross-site Scripting (XSS)

typo3/cms is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper encoding of user input, allowing authenticated editors to inject arbitrary HTML or JavaScript...

Type Confusion

chromium is vulnerable to Type Confusion.This vulnerability due to type confusion in the V8 engine, which fails to properly handle object types, allowing remote attackers to execute arbitrary code within a sandbox environment via a specially crafted HTML page...

Cross-site Flashing

typo3/cms is vulnerable to Cross-site Flashing. The vulnerability is due to missing validation of flash and image files, allowing the embedding of flash videos from external domains...

Cross-site Scripting (XSS)

typo3/cms is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper encoding of editor input in the search result view, allowing authenticated editors to inject arbitrary HTML...

Sensitive Information Exposure

chainguard.dev/apko is vulnerable to Sensitive Information Exposure. The vulnerability is due to improper redaction of sensitive information within error log output, where HTTP basic auth credentials from repository and keyring URLs are exposed, which allows an attacker with access to logs to...

SQL Injection

github.com/goharbor/harbor is vulnerable to SQL Injection. The vulnerability is due to the improper usage of prepared statements within the ListScanTasksByReportUUID function in task.go, which allows an attacker with administrator, projectadmin, or projectmaintainer roles to execute arbitrary SQL...

Sensitive Information Disclosure

ethycafides is vulnerable to Information Disclosure. The vulnerability is due to improper masking of nested sensitive fields such as privatekey in the BigQuery connection configuration, which allows an attacker to expose the sensitive fields in plaintext via certain API endpoints...

Open Redirect

github.com/goharbor/harbor is vulnerable to open redirect. The vulnerability is due to a lack of validation for the redirecturl parameter with the OIDC authentication, which allows attackers to redirect users to malicious sites after login...

Cleartext Password Storage

statamic/cms is vulnerable to Cleartext Password Storage. This vulnerability is due to the insecure handling of password confirmation data, which affects users registered via the user:registerform tag and using file-based user accounts. The vulnerability allows an attacker, who gains access to us...

Authentication Bypass

github.com/casgate/casgate is vulnerable to Authentication Bypass. The vulnerability is due to improper authorization checks using the id parameter in GET requests, which allows attackers to bypass authentication and access sensitive information remotely without authorization...

Arbitrary Code Execution

yiisoft/yii2 is vulnerable to Arbitrary Code Execution. The vulnerability is due to improper validation in the set magic function when attaching behaviors to components, allowing instantiation of arbitrary classes if attacker-controlled input is provided...

Cross Site Scripting (XSS)

@wangeditor/editor is vulnerable to Cross-site scripting XSS. The vulnerability is due to missing input sanitization within the image upload function, which allows an attacker to execute arbitrary JavaScript in the browser...

Improper Input Validation

github.com/ollama/ollama is vulnerable to Improper Input Validation. The vulnerability is due to improper validation of the digest format sha256 with 64 hex digits when getting the model path, which results in the mishandling of the TestGetBlobsPath test cases with fewer than 64 hex digits, more...

Cross-Site Scripting (XSS)

yiisoft/yii2 is vulnerable to Cross-site Scripting XSS. The vulnerability is caused by improper handling of quote conversion in the htmlspecialchars function, allowing an attacker to inject malicious attributes though argument values in exception stack traces...

SQL Injection

typo3/cms is vulnerable to SQL injection. The vulnerability is due to a flaw in the database escaping API when configured for MySQL passthrough mode, which affects all queries using DatabaseConnection::sqlquery, even if arguments were properly escaped with DatabaseConnection::quoteStr...

Use After Free

libmodbus is vulnerable to a Use After Free. The vulnerability is caused by improper handling of the ctx-backend pointer, which allows attackers to cause a Denial of Service DoS via a crafted message sent to the unit-test-server...

Cross-site Scripting (XSS)

activeadmin is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper sanitization of user input in dynamic legends, which allows for the injection of arbitrary JavaScript code when creating entities with names that include a script payload...

Denial Of Service (DoS)

libmodbus is vulnerable to Denial of Service DoS. The vulnerability is due to an invalid pointer in the modbusreceive function, triggered by a crafted message sent to the unit-test-server, which results in Denial of Service DoS...

Heap-based Buffer Overflow

libmodbus is vulnerable to a heap overflow. The vulnerability is due to improper memory management in the modbusmappingfree...

Cross-Site Scripting (XSS)

typo3/cms-core is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper sanitization of file extensions containing malicious sequences when accessing the server's file system directly or through synchronization, which allows an attacker to execute arbitrary scripts in the...

Information Disclosure

typo3/cms-core is vulnerable to Information Disclosure. The vulnerability is due to Inline JavaScript settings within the RequireJS package, which allows an attacker to retrieve additional information about the installed system and third-party extensions...

Improper Permission Check

Wagtail is vulnerable to Improper Permission Check. The vulnerability is due to an improperly applied permission check in the wagtail.contrib.settings module, allowing users with admin access to modify settings models without proper permissions...

Arbitrary Command Execution

typo3/cms is vulnerable to Arbitrary Command Execution. The vulnerability is due to improper handling of the "From" header when an email comes from a non-trusted source and when no "Return-Path" is configured, which allows an attacker to execute arbitrary shell commands on the server. Note that...

Insecure Deserialization

typo3/cms-core is vulnerable to Insecure Deserialization. The vulnerability is due to request handling that relies on HMAC-SHA1 signing with a sensitive encryption key, which, if exposed, allows attackers to deserialize malicious payloads...

Sensitive Information Disclosure

typo3/cms-core is vulnerable to Sensitive Information Disclosure. The vulnerability is due to the Install Tool exposing the current TYPO3 version number to non-authenticated users...

Cross-Site Scripting (XSS)

typo3/cms-core is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to the mishandling of t3:// URL schemes and typolink functionality, which affecting both backend forms and frontend extensions using typolink rendering, which allows attackers to execute arbitrary JavaScript within...

Insecure Deserialization

typo3/cms-form is vulnerable to Insecure Deserialization. The vulnerability is due to the PECL package "yaml" with the PHP setting yml.decodephp enabled, which allows an attacker to deserialize arbitrary YAML to PHP code. An attacker must have a valid backend user account as well yaml.decodephp...

Cross-Site Scripting (XSS)

typo3/cms-core is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper user input encoding of notifications shown in modal windows within the TYPO3 backend, which allows an attacker with a valid backend user account to execute arbitrary JavaScript in a users browser...

Cross-Site Scripting (XSS)

typo3/cms-core is vulnerable to Cross-Site scripting XSS. The vulnerability is caused by improper user input encoding when using templates in the built-in Fluid ViewHelpers, which allows an attacker to inject malicious scripts into the browser...

Cross-Site Scripting (XSS)

typo3/cms-core is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper input sanitization in the Form Framework validation handling, which allows an attackers to inject malicious JavaScript...

Information Disclosure

typo3/cms-core is vulnerable to Information Disclosure. The vulnerability is due to improper permission checks on the element information component, which displays properties of a certain record without verifying the backend user’s permissions...

Broken Access Control

typo3/cms-core is vulnerable to Broken Access Control. The vulnerability is due to improper restriction of import functionality, which normally is limited to admin users or those with explicit user TSconfig settings. The vulnerability enables file uploads bypassing file abstraction layer...

Information Disclosure

typo3/cms-core is vulnerable to Information Disclosure The vulnerability is due to improper session termination, where session data of authenticated users is transformed into an anonymous user session during the logout process, allowing subsequent users of the same client application to access...

Cross-Site Scripting (XSS)

typo3/cms-core is vulnerable to Cross-Site Scripting XSS. This vulnerability is due to inadequate input encoding in the FEUSERfieldName template patterns, utilized by the felogin system extension for regular frontend rendering, which allows an attackers to inject malicious scripts into the fronte...

Directory Traversal

typo3/cms-core is vulnerable to Directory Traversal. The vulnerability is due to TSconfig fields in page property backend forms, which allows an attacker to inject malicious sequences into the tsconfigincludes field which results in directory traversal...

Cross-Site Scripting (XSS)

typo3/cms-core is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper user input encoding, which can result in XSS when rendering files from .youtube or .vimeo. Exploitation requires a valid backend user account or write access on the server system e.g., SFTP...

Information Disclosure

typo3/cms-core is vulnerable to Information Disclosure. The vulnerability is due to login failures being logged at the "warning" level instead of the "debug" level, which exposes plain text credential information...

Denial Of Service (DoS)

typo3/cms-core is vulnerable to Denial of Service DoS. The vulnerability is due to a lack of size limits on media files .youtube and .vimeo in the TYPO3 backend, which results in large files consuming excessive system resources...

Out-of-bounds Write

chromium is vulnerable to Out-of-bounds Write. The vulnerability is due to inadequate bounds checking within a sandbox environment via a carefully crafted HTML page, allowing a remote attacker to execute arbitrary code...

Use-After-Free

chromium is vulnerable to Use-After-Free. The vulnerability is due to improper memory management via a crafted HTML page, potentially allowing a remote attacker to exploit heap corruption...

Use After Free

chromium is vulnerable to Use After Free. The vulnerability is due to improper memory management via a crafted HTML page, potentially allowing a remote attacker to exploit heap corruption...

Use-After-Free

chromium is vulnerable to Use-After-Free. The vulnerability is due to improper memory management via a crafted HTML page, potentially allowing a remote attacker to exploit heap corruption...