Количество 3
Количество 3
CVE-2026-1337
Insufficient escaping of unicode characters in query log in Neo4j Enterprise and Community editions prior to 2026.01 can lead to XSS if the user opens the logs in a tool that treats them as HTML. There is no security impact on Neo4j products, but this advisory is released as a precaution to treat the logs as plain text if using versions prior to 2026.01. Proof of concept exploit: https://github.com/JoakimBulow/CVE-2026-1337
CVE-2026-1337
Insufficient escaping of unicode characters in query log in Neo4j Ente ...
GHSA-xr72-g735-4vwp
Neo4j Enterprise and Community editions have insufficient escaping of unicode characters in query log
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-1337 Insufficient escaping of unicode characters in query log in Neo4j Enterprise and Community editions prior to 2026.01 can lead to XSS if the user opens the logs in a tool that treats them as HTML. There is no security impact on Neo4j products, but this advisory is released as a precaution to treat the logs as plain text if using versions prior to 2026.01. Proof of concept exploit: https://github.com/JoakimBulow/CVE-2026-1337 | 0% Низкий | 2 дня назад | |
| CVE-2026-1337 Insufficient escaping of unicode characters in query log in Neo4j Ente ... | 0% Низкий | 2 дня назад | |
| GHSA-xr72-g735-4vwp Neo4j Enterprise and Community editions have insufficient escaping of unicode characters in query log | 0% Низкий | 2 дня назад |
Уязвимостей на страницу