Lucene search
K

27 matches found

CVE
CVE
added 2020/04/29 12:0 a.m.7236 views

CVE-2020-11023

The connected Astra Linux bulletin confirms CVE-2020-11023: in jQuery versions >= 1.0.3 and < 3.5.0, passing HTML containing elements from untrusted sources to DOM manipulation methods (e.g., .html(), .append()) may lead to untrusted code execution. Patch released in jQuery 3.5.0. Remediat...

6.9CVSS7.2AI score0.8383EPSS
In wild
CVE
CVE
added 2019/04/19 12:0 a.m.3065 views

CVE-2019-11358

CVE-2019-11358 is a prototype pollution vulnerability in jQuery (before 3.4.0) where mishandling of extend(true, {}, ...) can extend Object.prototype if an unsanitized source object has an enumerable proto property. The Core issue is triggered when a polluted prototype is introduced via nested ob...

6.1CVSS6.4AI score0.87218EPSS
In wild
CVE
CVE
added 2020/03/07 12:2 a.m.1480 views

CVE-2020-9281

CVE-2020-9281 is an XSS in CKEditor’s HTML Data Processor that allows remote script execution via a crafted protected comment (CKEditor syntax cke_protected). Affected are CKEditor 4.0–before 4.14. IBM DOORS/DOORS Web Access bullets include this CVE and note remediation: upgrade to CKEditor 4.17....

6.1CVSS5.4AI score0.04327EPSS
CVE
CVE
added 2021/10/26 12:0 a.m.1075 views

CVE-2021-41182

CVE-2021-41182 is an XSS in the jQuery-UI Datepicker altField path (embedded in some OTRS deployments). Affected version observed as 1.12.1 copy; the issue is fixed in jQuery UI 1.13.0 by treating any altField value as a CSS selector. Debris from related CVEs (41183/41184) describe similar issues...

6.5CVSS6.4AI score0.42229EPSS
CVE
CVE
added 2021/10/26 12:0 a.m.912 views

CVE-2021-41184

CVE-2021-41184 describes an XSS in jQuery-UI before 1.13.0 where untrusted input passed to the of option of the .position() utility could lead to code execution. The connected documents confirm the issue affects jQuery-UI embedded in other software (e.g., OTRS/IU contexts) and state the fix is to...

6.5CVSS6.5AI score0.44515EPSS
Web
CVE
CVE
added 2017/03/15 12:0 a.m.854 views

CVE-2016-7103

CVE-2016-7103 is a cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0, exploitable via the closeText parameter of the Dialog widget. The issue allows remote script/HTML injection. Remediation per connected documents is to upgrade to jQuery UI 1.12.0 or later (fixed version).

6.1CVSS6AI score0.2258EPSS
In wild
CVE
CVE
added 2021/01/26 8:39 p.m.648 views

CVE-2021-26272

CVE-2021-26272 is a ReDoS in CKEditor 4 Autolink: by pasting crafted URL-like text and pressing Enter/Space, a victim can trigger a denial-of-service. The publicly documented detail confirms CKEditor 4.x up to before 4.16 is affected; remediation is to upgrade to CKEditor 4.16+ or apply a fix as ...

6.5CVSS6.6AI score0.02223EPSS
CVE
CVE
added 2021/10/26 12:0 a.m.608 views

CVE-2021-41183

CVE-2021-41183 concerns jQuery-UI’s Datepicker in the embedded jQuery-UI copy used by OTRS (notably in the 1.12.1 series). The vulnerability arises from accepting values for the various *Text options from untrusted sources, which could allow execution of untrusted code. The issue is fixed in jQue...

6.5CVSS6.5AI score0.07948EPSS
CVE
CVE
added 2022/03/16 12:0 a.m.589 views

CVE-2022-24729

CVE-2022-24729 affects CKEditor4 prior to 4.18.0, where the dialog plugin has a vulnerability in the input validator regex that can cause a severe performance drop, leading to browser tab freeze (ReDoS). The issue is documented with a confirmed remediation: upgrade to CKEditor4 4.18.0 or newer. C...

7.5CVSS6.7AI score0.02448EPSS
CVE
CVE
added 2021/01/26 8:39 p.m.561 views

CVE-2021-26271

CVE-2021-26271 affects CKEditor 4 before 4.16. An attacker could trigger a ReDoS-type DoS by persuading a victim to paste crafted text into the Styles input of dialogs (Advanced Tab in the Dialogs plugin). Affected versions are CKEditor 4.x prior to 4.16; remediation is to upgrade to 4.16 or newe...

6.5CVSS6.6AI score0.01962EPSS
CVE
CVE
added 2022/03/16 12:0 a.m.512 views

CVE-2022-24728

CKEditor4 core HTML processing vulnerability (CVE-2022-24728) allows injecting malformed HTML that bypasses sanitization, potentially enabling JavaScript execution in CKEditor 4 plugins. A fix is available in version 4.18.0; versions prior to 4.18.0 are affected. No public workarounds are provide...

5.4CVSS5.9AI score0.01162EPSS
CVE
CVE
added 2021/11/17 12:0 a.m.482 views

CVE-2021-41164

CKEditor4 contains an Advanced Content Filter (ACF) vulnerability (CVE-2021-41164) that allows injection of malformed HTML bypassing sanitization, enabling JavaScript execution. Affected: CKEditor4

8.2CVSS6.2AI score0.01257EPSS
CVE
CVE
added 2021/08/12 5:10 p.m.389 views

CVE-2021-32809

CVE-2021-32809 concerns CKEditor 4’s Clipboard functionality. Affected: CKEditor 4, Clipboard plugin, version >= 4.5.2. Root cause: HTML injected via malformed paste content could be executed within the editor’s context. Impact: potential HTML injection into the editor content (code injection ...

5.4CVSS5.8AI score0.01188EPSS
CVE
CVE
added 2021/08/12 11:10 p.m.333 views

CVE-2021-37695

CKEditor 4 vulnerability CVE-2021-37695 involves the Fake Objects addon. The issue allows injection of malformed Fake Objects HTML that can lead to JavaScript execution in affected CKEditor 4 plugins when used at versions prior to 4.16.2. Public references in connected documents confirm the affec...

7.3CVSS6AI score0.01324EPSS
CVE
CVE
added 2021/08/12 4:25 p.m.273 views

CVE-2021-32808

CKEditor 4.x clipboard Widget plugin vulnerability (CVE-2021-32808) arises from improper validation of widget HTML when used with the undo feature, allowing a remote attacker to trigger JavaScript execution in the victim’s browser. Affected: CKEditor 4 plugins with version >= 4.13.0. Remediati...

7.6CVSS6.1AI score0.01192EPSS
CVE
CVE
added 2020/10/07 3:50 p.m.248 views

CVE-2020-26870

CVE-2020-26870 affects DOMPurify up to 2.0.16/2.0.17, where a serialize-parse roundtrip can alter the DOM (namespace changes HTML→MathML, e.g., nesting FORM elements), enabling a mutation XSS. The issue is documented by Cure53 and linked analyses; a fix was released with DOMPurify 2.0.17. Related...

6.1CVSS6.1AI score0.04881EPSS
CVE
CVE
added 2021/11/17 7:15 p.m.221 views

CVE-2021-41165

CKEditor4 core HTML processing vulnerability (CVE-2021-41165) allows injection of malformed HTML comments bypassing content sanitization, potentially enabling JavaScript execution. Affected: CKEditor 4.x versions before 4.17.0 (affects all plugins). Impact: execution of arbitrary script in affect...

8.2CVSS6.2AI score0.0147EPSS
CVE
CVE
added 2020/10/30 11:10 a.m.197 views

CVE-2020-7760

This CVE-2020-7760 affects CodeMirror prior to 5.58.2 (and org.apache.marmotta.webjars:codemirror) with a ReDOs vulnerability in a JavaScript mode regex (sub-pattern (s|/. ?/) ). IBM’s bulletin confirms the same issue and notes watsonx.data is affected (version 2.2.1) and that remediation is to u...

7.5CVSS6.1AI score0.05197EPSS
CVE
CVE
added 2021/06/28 7:15 p.m.185 views

CVE-2021-32723

PrismJS Prism before v1.24.0 is vulnerable to Regular Expression Denial of Service (ReDoS) when highlighting untrusted text. Specifically, ASCIIDoc and ERB are susceptible to crafted input that can cause excessive highlighting time; other languages are not affected. The vulnerability has been fix...

7.4CVSS6.5AI score0.01433EPSS
CVE
CVE
added 2020/11/12 8:31 p.m.162 views

CVE-2020-27193

CVE-2020-27193 is an XSS in CKEditor 4.15.0 Color Dialog. A remote attacker can lure a user to paste crafted HTML into the editor, causing script execution in the user’s browser. The vulnerability is addressed by CKEditor 4.15.1 security patch; IBM/OSS bulletins also reference the fix. Affected p...

6.1CVSS5.9AI score0.02018EPSS
CVE
CVE
added 2021/07/20 10:45 p.m.89 views

CVE-2021-2460

CVE-2021-2460 affects Oracle Database Server's Oracle Application Express Data Reporter component, with versions prior to 21.1.0.00.04 affected. The vulnerability allows a low-privileged attacker with a valid user account and network access over HTTP to compromise Data Reporter, requiring user in...

5.4CVSS5AI score0.00504EPSS
CVE
CVE
added 2020/04/15 1:29 p.m.78 views

CVE-2020-2514

CVE-2020-2514 affects the Oracle Application Express (APEX) component of Oracle Database Server , with affected versions before 19.2. The vulnerability allows a low-privileged End User with network access via HTTPS to compromise APEX, with exploitation requiring user interaction . Consequences st...

4.9CVSS4AI score0.00749EPSS
CVE
CVE
added 2020/10/21 2:4 p.m.67 views

CVE-2020-14900

Oracle CVE-2020-14900 affects the Oracle Application Express Group Calendar component in Oracle Database Server (older than 20.2). The vulnerability allows a low-privileged user with a valid account, over HTTP, to perform unauthorized updates, inserts, or deletes and read access to certain data, ...

5.4CVSS5AI score0.0069EPSS
CVE
CVE
added 2020/10/21 2:4 p.m.66 views

CVE-2020-14762

CVE-2020-14762 concerns Oracle Database Server’s Oracle Application Express component, affected prior to 20.2. An attacker with SQL Workshop privilege, network access via HTTP, and user interaction can potentially read and modify Oracle APEX data and may impact other products. CVSS 3.1Base Score ...

5.4CVSS5.4AI score0.00718EPSS
CVE
CVE
added 2020/10/21 2:4 p.m.58 views

CVE-2020-14763

CVE-2020-14763 affects Oracle Database Server’s Application Express Quick Poll component, with the affected version being prior to 20.2. A low-privileged attacker with a valid user account and network access via HTTP can compromise Quick Poll, with successful attacks potentially leading to unauth...

5.4CVSS5.3AI score0.00718EPSS
CVE
CVE
added 2020/10/21 2:4 p.m.54 views

CVE-2020-14899

CVE-2020-14899 affects the Oracle Application Express Data Reporter component of Oracle Database Server (pre-20.2). The issue is exploitable by a low-privilege user with a valid account, via HTTP, and requires user interaction. An attacker can modify and delete data and also obtain unauthorized r...

5.4CVSS5AI score0.0069EPSS
CVE
CVE
added 2020/10/21 2:4 p.m.49 views

CVE-2020-14898

CVE-2020-14898 affects Oracle Database Server’s Oracle Application Express Packaged Apps (APEX) prior to version 20.2. The issue allows a low-privilege user with a valid account and network access via HTTP to interact with a vulnerable APEX Packaged Apps component, potentially resulting in unauth...

5.4CVSS5AI score0.00718EPSS