Количество 3
Количество 3
CVE-2024-26482
An HTML injection vulnerability exists in the Edit Content Layout module of Kirby CMS v4.1.0. NOTE: the vendor disputes the significance of this report because some HTML formatting (such as with an H1 element) is allowed, but there is backend sanitization such that the reporter's mentioned "injecting malicious scripts" would not occur.
GHSA-qv4x-v2v4-f8p9
Withdrawn Advisory: Kirby CMS HTML injection vulnerability
SUSE-SU-2024:2571-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-26482 An HTML injection vulnerability exists in the Edit Content Layout module of Kirby CMS v4.1.0. NOTE: the vendor disputes the significance of this report because some HTML formatting (such as with an H1 element) is allowed, but there is backend sanitization such that the reporter's mentioned "injecting malicious scripts" would not occur. | CVSS3: 7.1 | 0% Низкий | почти 2 года назад |
| GHSA-qv4x-v2v4-f8p9 Withdrawn Advisory: Kirby CMS HTML injection vulnerability | CVSS3: 7.1 | 0% Низкий | почти 2 года назад |
 | SUSE-SU-2024:2571-1 Security update for the Linux Kernel | больше 1 года назад |
Уязвимостей на страницу