CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Valine.js: >> Valine >> 1.4.14 Security Vulnerabilities

CVE-2020-28847

Cross Site Scripting (XSS) vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment.

CVSS Score

5.4

EPSS Score

0.002

Published

2022-04-05

CVE-2021-34801

Valine 1.4.14 allows remote attackers to cause a denial of service (application outage) by supplying a ua (aka User-Agent) value that only specifies the product and version.

CVSS Score

5.3

EPSS Score

0.01

Published

2021-06-16

Page 1

Vulnerabilities

Vulnerable Software

Valine.js: >> Valine >> 1.4.14 Security Vulnerabilities

Products

Pricing

Contact Us