|
309791
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Edit Email Form Settings Feature. Version 5.1.2 fixes the issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46998
|
2024-10-29 00:32 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309792
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Blog posts feature. Version 5.1.2 fixes this issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46996
|
2024-10-29 00:31 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309793
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in Blog posts and Contents list Feature. Version 5.1.2 fixes this issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46994
|
2024-10-29 00:30 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309794
|
6.1 |
MEDIUM
Network
|
openrefine
|
openrefine
|
OpenRefine is a free, open source tool for working with messy data. Prior to version 3.8.3, the built-in "Something went wrong!" error page includes the exception message and exception traceback with…
|
CWE-79
Cross-site Scripting
|
CVE-2024-47882
|
2024-10-28 23:26 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309795
|
8.8 |
HIGH
Network
|
openrefine
|
openrefine
|
OpenRefine is a free, open source tool for working with messy data. Starting in version 3.4-beta and prior to version 3.8.3, in the `database` extension, the "enable_load_extension" property can be s…
|
CWE-89
SQL Injection
|
CVE-2024-47881
|
2024-10-28 23:14 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309796
|
7.5 |
HIGH
Network
|
google
|
android
|
there is a possible Null Pointer Dereference (modem crash) due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interacti…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-44101
|
2024-10-28 22:59 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309797
|
- |
|
-
|
-
|
Validate.js provides a declarative way of validating javascript objects. All versions as of 30 November 2020 contain one or more regular expressions that are vulnerable to Regular Expression Denial o…
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2020-26310
|
2024-10-28 22:58 |
2024-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309798
|
- |
|
-
|
-
|
Validate.js provides a declarative way of validating javascript objects. Versions 0.11.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service …
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2020-26309
|
2024-10-28 22:58 |
2024-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309799
|
- |
|
-
|
-
|
Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service …
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2020-26308
|
2024-10-28 22:58 |
2024-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309800
|
- |
|
-
|
-
|
HTML2Markdown is a Javascript implementation for converting HTML to Markdown text. All available versions contain one or more regular expressions that are vulnerable to Regular Expression Denial of S…
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2020-26307
|
2024-10-28 22:58 |
2024-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
