Lucene search
GoogleOSV:GHSA-H3VQ-WV8J-36GWHistoryJan 08, 2022 - 12:44 a.m.
Cross-site Scripting in Scratch-Svg-Renderer
2022-01-0800:44:33
Google
osv.dev
7
0.001 Low
EPSS
Percentile
31.3%
A DOM-based cross-site scripting (XSS) vulnerability in Scratch-Svg-Renderer v0.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted sb3 file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| scratch-svg-renderer | le | 0.2.0 |
Related
nvd
nvd
CVE-2020-27428
2022-01-06 00:15:07
cnvd
cnvd
scratch-svg-renderer cross-site scripting vulnerability
2022-01-10 00:00:00
osv
osv
CVE-2020-27428
2022-01-06 00:15:07
cve
cve
CVE-2020-27428
2022-01-06 00:15:07
cvelist
cvelist
CVE-2020-27428
2022-01-05 23:37:45
prion
prion
Cross site scripting
2022-01-06 00:15:00
github
github
Cross-site Scripting in Scratch-Svg-Renderer
2022-01-08 00:44:33
veracode
veracode
Cross-site Scripting (XSS)
2022-01-07 14:40:37