996 matches found
CVE-2026-43892 AntSword: Incomplete noxss() sanitization leads to 1-click RCE via jquery.terminal format code injection
AntSword is a cross-platform website management toolkit. Prior to 2.1.16, incomplete noxss sanitization leads to 1-click RCE via jquery.terminal format code injection. This vulnerability is fixed in 2.1.16...
PT-2026-40329
AntSword is a cross-platform website management toolkit. Prior to 2.1.16, incomplete noxss sanitization leads to 1-click RCE via jquery.terminal format code injection. This vulnerability is fixed in 2.1.16...
RHCOS 4 : OpenShift Container Platform 4.5.33 (RHSA-2021:0429)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0429 advisory. - ant: insecure temporary file vulnerability CVE-2020-1945 - ant: insecure temporary file CVE-2020-11979 - jenkins: Arbitrary file...
RHCOS 4 : OpenShift Container Platform 4.6.17 (RHSA-2021:0423)
The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:0423 advisory. - ant: insecure temporary file vulnerability CVE-2020-1945 - ant: insecure temporary file CVE-2020-11979 - jenkins: Arbitrary file...
RHCOS 3 : OpenShift Container Platform 3.11.394 (RHSA-2021:0637)
The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0637 advisory. - ant: insecure temporary file vulnerability CVE-2020-1945 - jenkins-2-plugins/subversion: XML parser is not preventing XML external...
Malicious code in ant-mcp-proxy-for-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 51df3beb4457da4a841727c91a2517ba5727c841c08f9d43cf2b25be9e476564 During use of the package, it silently downloads and executes remote executables or scripts. During analysis, the remote resources were no longer available. Th...
MAL-2026-2669 Malicious code in ant-mcp-proxy-for-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 51df3beb4457da4a841727c91a2517ba5727c841c08f9d43cf2b25be9e476564 During use of the package, it silently downloads and executes remote executables or scripts. During analysis, the remote resources were no longer available. Th...
Security Bulletin: IBM webMethods BPM is vulnerable to a denial of service due to ant
Summary Ant is used by IBM webMethods BPM for internal build and deployment operations. Vulnerability Details CVEID:CVE-2012-2098 DESCRIPTION: Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream BZip2CompressorOutputStream in Apache Commons Compress before...
CVE-2023-31707
SEMCMS 1.5 is vulnerable to SQL Injection via AntRponse.php...
CVE-2019-18350
In Ant Design Pro 4.0.0, reflected XSS in the user/login redirect GET parameter affects the authorization component, leading to execution of JavaScript code in the login after-action script...
EUVD-2025-199366
Malicious code in gatsby-plugin-antd npm...
EUVD-2025-178895
Malicious code in firebase-antd-lyra-version npm...
EUVD-2025-175979
Malicious code in testcafe-jsonp-lyra-antd npm...
EUVD-2025-116751
Malicious code in altair-farout-antd-await npm...
EUVD-2025-112149
Malicious code in json-blaze-venus-antd npm...
EUVD-2025-120662
Malicious code in warp-dagda-antd-scripts npm...
EUVD-2025-112542
Malicious code in indus-optimize-css-assets-webpack-plugin-antd-quasar npm...
EUVD-2025-111794
Malicious code in less-loader-dotenv-parse-variables-ophiuchus-antd npm...
EUVD-2025-122603
Malicious code in resolvers-celeste-antd-sequelize npm...
EUVD-2025-113175
Malicious code in global-hyperion-antd-iota npm...