Lucene search
Valine.jsValine1.4.14
2 matches found
CVE-2021-34801
Valine 1.4.14 allows remote attackers to cause a denial of service (application outage) by supplying a ua (aka User-Agent) value that only specifies the product and version.
5.3CVSS5.3AI score0.01046EPSS
CVE-2020-28847
Cross Site Scripting (XSS) vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment.
5.4CVSS5.2AI score0.00181EPSS