7Ragnarok7

2 exploits Active since Aug 2022

CVE-2024-37888 NOMISEC MEDIUM WORKING POC

Mlewand Open Link < 1.0.5 - XSS

The Open Link is a CKEditor plugin, extending context menu with a possibility to open link in a new tab. The vulnerability allowed to execute JavaScript code by abusing link href attribute. It affects all users using the Open Link plugin at version < **1.0.5**.

3 stars

CVSS 6.1

View Code

CVE-2021-3754 NOMISEC MEDIUM WRITEUP

Keycloak - Info Disclosure

A flaw was found in keycloak where an attacker is able to register himself with the username same as the email ID of any existing user. This may cause trouble in getting password recovery email in case the user forgets the password.

1 stars

CVSS 5.3

View Code