Vulnerabilities > Improper Encoding or Escaping of Output
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-02 | CVE-2021-41232 | Improper Encoding or Escaping of Output vulnerability in Thunderdome Planning Poker Thunderdome is an open source agile planning poker tool in the theme of Battling for points. | 9.8 |
| 2021-10-27 | CVE-2021-41191 | Improper Encoding or Escaping of Output vulnerability in Redon Roblox Purchasing HUB Roblox-Purchasing-Hub is an open source Roblox product purchasing hub. | 5.0 |
| 2021-10-06 | CVE-2021-21684 | Improper Encoding or Escaping of Output vulnerability in Jenkins GIT Jenkins Git Plugin 4.8.2 and earlier does not escape the Git SHA-1 checksum parameters provided to commit notifications when displaying them in a build cause, resulting in a stored cross-site scripting (XSS) vulnerability. | 6.1 |
| 2021-09-14 | CVE-2021-33672 | Improper Encoding or Escaping of Output vulnerability in SAP Contact Center 700 Due to missing encoding in SAP Contact Center's Communication Desktop component- version 700, an attacker could send malicious script in chat message. | 9.3 |
| 2021-09-01 | CVE-2021-39170 | Improper Encoding or Escaping of Output vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 3.5 |
| 2021-08-23 | CVE-2021-39367 | Improper Encoding or Escaping of Output vulnerability in Canon OCE Print Exec Workgroup 1.3.2 Canon Oce Print Exec Workgroup 1.3.2 allows Host header injection. | 5.0 |
| 2021-08-20 | CVE-2021-22254 | Improper Encoding or Escaping of Output vulnerability in Gitlab Under very specific conditions a user could be impersonated using Gitlab shell. | 3.5 |
| 2021-08-16 | CVE-2021-38751 | Improper Encoding or Escaping of Output vulnerability in Exponentcms A HTTP Host header attack exists in ExponentCMS 2.6 and below in /exponent_constants.php. | 4.3 |
| 2021-08-13 | CVE-2021-32067 | Improper Encoding or Escaping of Output vulnerability in Mitel Micollab The MiCollab Client Service component in Mitel MiCollab before 9.3 could allow an attacker to view sensitive system information through an HTTP response due to insufficient output sanitization. | 6.4 |
| 2021-08-13 | CVE-2021-32072 | Improper Encoding or Escaping of Output vulnerability in Mitel Micollab The MiCollab Client Service component in Mitel MiCollab before 9.3 could allow an attacker to get source code information (disclosing sensitive application data) due to insufficient output sanitization. | 4.0 |