16 matches found
EUVD-2014-3606
Malware in sbrugna...
EUVD-2014-3607
Malware in sbrugna...
@aerogear/voyager-keycloak (>=0.8.1-dev.422.e25a8f8.0 <=0.9.1-dev.435.8d846ff.0), @aerogear/voyager-server (>=0.8.1-dev.414.e43c5aa.0 <=0.9.1-dev.435.8d846ff.0) +70 more potentially affected by CVE-2022-2237 via keycloak-connect (>=10.0.2 <=20.0.5)
keycloak-connect NPM version =10.0.2, =0.8.1-dev.422.e25a8f8.0, =0.8.1-dev.414.e43c5aa.0, =0.8.1-dev.414.e43c5aa.0, =1.0.0-alpha.0, =5.1.2, =0.1.0, =0.0.0, =1.0.0, =1.0.0, =1.0.0, =1.1.3, =1.0.3, =1.1.7 and more Source cves: CVE-2022-2237 Source advisory: OSV:GHSA-59FQ-727J-HM3F...
Red Hat JBoss AeroGear Cross-Site Scripting Vulnerability (CNVD-2022-54320)
Red Hat JBoss AeroGear is an open source library for mobile service connectivity from Red Hat, Inc. A security vulnerability exists in Red Hat JBoss AeroGear, which stems from a persistent cross-site scripting XSS vulnerability. A remote attacker could use this vulnerability to compromise the...
CVE-2014-3650
Multiple persistent cross-site scripting XSS flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input...
Cross site scripting
Multiple persistent cross-site scripting XSS flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input...
CVE-2014-3650
Multiple persistent cross-site scripting XSS flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input...
CVE-2014-3650
Technical details are not publicly available in the provided documents. Monitor for updates.
Red Hat JBoss AeroGear 跨站脚本漏洞
Red Hat JBoss AeroGear is an open source library for mobile service connectivity from Red Hat, Inc. A security vulnerability exists in Red Hat JBoss AeroGear, which stems from a persistent cross-site scripting XSS vulnerability. A remote attacker could use this vulnerability to compromise the...
Red Hat JBoss AeroGear Cross-Site Scripting Vulnerability
Red Hat JBoss AeroGear is an open source library for mobile service connectivity from Red Hat USA. The product provides features such as data synchronization, identity management and push notifications. A cross-site scripting vulnerability exists in Red Hat JBoss AeroGear, which stems from the la...
CVE-2014-3649
JBoss AeroGear has reflected XSS via the password field...
Cross site scripting
JBoss AeroGear has reflected XSS via the password field...
CVE-2014-3649
CVE-2014-3649 affects Red Hat/JBoss AeroGear and refers to a reflected XSS vulnerability in the password field. The root cause cited by CNVD is lack of proper validation of client-side data by the WEB application, enabling an attacker to execute client-side code in a victim’s browser. Public expl...
CVE-2014-3649
JBoss AeroGear has reflected XSS via the password field...
CVE-2014-3650
Multiple persistent cross-site scripting XSS flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input...
CVE-2014-3649
JBoss AeroGear has reflected XSS via the password field...