ROOT-APP-NPM-CVE-2025-8101 CVE-2025-8101 in @rootio/linkifyjs - Patched by Root

Root has patched CVE-2025-8101 in the @rootio/linkifyjs package for Root:npm. Multiple fixed versions available...

Ubuntu: Security Advisory (USN-8101-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 : Vim vulnerabilities (USN-8101-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8101-1 advisory. Rahul Hoysala discovered that Vim did not correctly handle certain tag resolutions. A...

@a.agiir/cinny (>=0.0.1 <=0.0.2), @a1tan/plugin-azure-openai (=0.4.0) +803 more potentially affected by CVE-2025-8101 via linkifyjs (>=4.0.0-beta.4 <=4.3.1)

linkifyjs NPM version =4.0.0-beta.4, =0.0.1, =0.1.0, =1.0.0, =0.1.8, =0.4.1, =0.4.7 and more Source cves: CVE-2025-8101 Source advisory: SNYK:JS-LINKIFYJS-11502189...

@a.agiir/cinny (>=0.0.1 <=0.0.2), @a1tan/plugin-azure-openai (=0.4.0) +791 more potentially affected by CVE-2025-8101 via linkify-react (>=4.0.0-beta.4 <=4.3.1)

linkify-react NPM version =4.0.0-beta.4, =0.0.1, =0.1.0, =1.0.0, =0.1.8, =0.4.1, =0.4.7 and more Source cves: CVE-2025-8101 Source advisory: SNYK:JS-LINKIFYREACT-11502190...

@a.agiir/cinny (>=0.0.1 <=0.0.2), @a1tan/plugin-azure-openai (=0.4.0) +1207 more potentially affected by CVE-2025-8101 via linkifyjs (>=2.1.4 <=4.3.1)

linkifyjs NPM version =2.1.4, =0.0.1, =0.1.0, =3.0.0, =0.4.1, =2.6.1, =0.1.1, =0.0.2, =0.25.0, =0.43.0 - @ajinkya-harness/backstage-ci-cd-test =0.9.0 - @alican.kuklaci/console-feed =3.5.0 - @alithya-oss/backstage-plugin-amazon-ecs =0.4.8 - @alithya-oss/backstage-plugin-aws-codebuild =0.5.9 -...

CVE-2025-8101

A prototype pollution vulnerability was found in Linkify. This vulnerability allows an attacker to inject HTML attributes and manipulate user-controlled variables. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product...

CVE-2025-8101

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' vulnerability in Linkify linkifyjs allows XSS Targeting HTML Attributes and Manipulating User-Controlled Variables.This issue affects Linkify: from 4.3.1 before 4.3.2...

CVE-2025-8101

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' vulnerability in Linkify linkifyjs allows XSS Targeting HTML Attributes and Manipulating User-Controlled Variables.This issue affects Linkify: from 4.3.1 before 4.3.2...

CVE-2025-8101

CVE-2025-8101 affects the Linkify library (linkifyjs). It is a prototype pollution vulnerability in Linkify from version 4.3.1 prior to 4.3.2, enabling manipulation of Object.prototype and potential HTML attribute injection leading to XSS. The issue stems from improper handling of the proto path ...

CVE-2025-8101 Linkify 4.3.1 - Prototype Pollution & HTML Attribute Injection (XSS)

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution' vulnerability in Linkify linkifyjs allows XSS Targeting HTML Attributes and Manipulating User-Controlled Variables.This issue affects Linkify: from 4.3.1 before 4.3.2...

CVE-2024-8101

A stored cross-site scripting XSS vulnerability exists in the Text Explorer component of aimhubio/aim version 3.23.0. The vulnerability arises due to the use of dangerouslySetInnerHTML without proper sanitization, allowing arbitrary JavaScript execution when rendering tracked texts. This can be...

CVE-2024-8101

A stored cross-site scripting XSS vulnerability exists in the Text Explorer component of aimhubio/aim version 3.23.0. The vulnerability arises due to the use of dangerouslySetInnerHTML without proper sanitization, allowing arbitrary JavaScript execution when rendering tracked texts. This can be...

CVE-2024-8101

CVE-2024-8101 affects aimhubio/aim v3.23.0, specifically the Text Explorer component. The issue is a stored XSS due to dangerouslySetInnerHTML being used without proper sanitization, enabling arbitrary JavaScript execution when rendering tracked texts (during the training process). Connected sour...

CVE-2024-8101 Stored XSS in aimhubio/aim

A stored cross-site scripting XSS vulnerability exists in the Text Explorer component of aimhubio/aim version 3.23.0. The vulnerability arises due to the use of dangerouslySetInnerHTML without proper sanitization, allowing arbitrary JavaScript execution when rendering tracked texts. This can be...

Linux Distros Unpatched Vulnerability : CVE-2018-8101

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The JPXStream::inverseTransformLevel function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service heap-based buffer over-read and...

Malicious code in wlwz-2312-8101 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e95eaf156d91b350938762332b6903c78ea7c875fb229dec2f47be345787b099 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-30459

SmartPTT SCADA 1.1.0.0 allows remote code execution when the attacker has administrator privileges by writing a malicious C script and executing it on the server via server settings in the administrator control panel on port 8101, by default...

CVE-2023-30459

SmartPTT SCADA 1.1.0.0 allows remote code execution when the attacker has administrator privileges by writing a malicious C script and executing it on the server via server settings in the administrator control panel on port 8101, by default...

Design/Logic Flaw

SmartPTT SCADA 1.1.0.0 allows remote code execution when the attacker has administrator privileges by writing a malicious C script and executing it on the server via server settings in the administrator control panel on port 8101, by default...