B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
nvd.nist.gov
RISK: Mittel (4.0)

[Medium] CVE-2026-34417 – OSCAL-GUI contains a reflected cross-site scripting vulnerability that allows un...

Medium CVE-2026-34417 OSCAL-GUI contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript in a victim's browser by injecting malicious content through the project request parameter in oscal-forms.php. The parameter value is...

#Sicherheitslücke #Browser
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2026-53673 - BuddyPress 14.4.0 Private Message IDOR via REST API user_id Parameter

2026-06-10 Mittel

CVE-2026-45782 - Cloud Hypervisor: Use-after-free in virtio-block Async I/O Completion

2026-06-10 Mittel

CVE-2026-46491 - SimpleSAMLphp casserver FileSystemTicketStore path traversal allows out-of-ticket-directory read/unserialize and conditional deletion

2026-06-10 Mittel

CVE-2026-41729 - Spring Data REST SpEL Injection via Map Key in JSON Patch

2026-06-10 Mittel

CVE-2026-41732 - In Spring for Apache Pulsar, overly broad trusted-package matching in header mapper exposes JDK classes to deserialization

2026-06-10 Mittel

CVE-2026-41717 - Spring Data MongoDB - SpEL Expression Injection via Annotated Query Parameter Binding

2026-06-10 Mittel