147 matches found
RS Studio Lagom WHMCS Template 安全漏洞
RS Studio Lagom WHMCS Template is a website template and front-end theme developed by the Polish company RS Studio. The RS Studio Lagom WHMCS Template versions 2.3.7 and earlier contain security vulnerabilities. These vulnerabilities stem from improper manipulation of the Datatables component,...
PT-2026-25713
A vulnerability was found in Lagom WHMCS Template up to 2.3.7. Impacted is an unknown function of the component Datatables. The manipulation results in improperly controlled modification of object prototype attributes. It is possible to launch the attack remotely. The exploit has been made public...
org.webjars.npm:github-com-DataTables-DataTablesSrc (=2.0.5), org.webjars.npm:vite (>=2.9.0 <=6.3.5) +1 more potentially affected by CVE-2026-27606 via org.webjars.npm:rollup (>=2.79.2 <=4.45.1)
org.webjars.npm:rollup MAVEN version =2.79.2, =2.9.0, =6.3.5 - org.webjars.npm:vitepress =1.0.0-draft.8 Source cves: CVE-2026-27606 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-15340921...
Malicious Package
Overview datatables-editor is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
EUVD-2026-0742
Malicious code in datatables-editor npm...
Malicious code in datatables-editor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac14c14a0e1472b84944a2153607fa90a3d074098be58d2f6ffe586a5bf80846 The package datatables-editor was found to contain malicious code. Source: ghsa-malware...
MAL-2026-12 Malicious code in datatables-editor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac14c14a0e1472b84944a2153607fa90a3d074098be58d2f6ffe586a5bf80846 The package datatables-editor was found to contain malicious code. Source: ghsa-malware...
Exploit for Prototype Pollution in Datatables Datatables.Net
CVE-2020-28458 Affected versions of this package are vulnerabl...
CVE-2025-66460
Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other. Prior to 1.35.3, Lookyloo passed improperly escaped values to cells rendered in datatables using the orthogonal-data feature. It is definitely exploitable from the popu...
CVE-2025-66460
Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other. Prior to 1.35.3, Lookyloo passed improperly escaped values to cells rendered in datatables using the orthogonal-data feature. It is definitely exploitable from the popu...
CVE-2025-66460 Lookyloo vulnerable to XSS due to lack of escaping in HTML elements passed to Datatables
Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other. Prior to 1.35.3, Lookyloo passed improperly escaped values to cells rendered in datatables using the orthogonal-data feature. It is definitely exploitable from the popu...
CVE-2025-66460
CVE-2025-66460 Lookyloo is a vulnerability in the Lookyloo web interface (pre-1.35.3) where improperly escaped values were passed to datatables cells rendered via the orthogonal-data feature. This can enable cross-site scripting (XSS) by injecting unsafe content into the UI, and is exploitable fr...
CVE-2025-66460 Lookyloo vulnerable to XSS due to lack of escaping in HTML elements passed to Datatables
Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other. Prior to 1.35.3, Lookyloo passed improperly escaped values to cells rendered in datatables using the orthogonal-data feature. It is definitely exploitable from the popu...
EUVD-2025-200310
Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other. Prior to 1.35.3, Lookyloo passed improperly escaped values to cells rendered in datatables using the orthogonal-data feature. It is definitely exploitable from the popu...
CVE-2025-66460 Lookyloo vulnerable to XSS due to lack of escaping in HTML elements passed to Datatables
Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other. Prior to 1.35.3, Lookyloo passed improperly escaped values to cells rendered in datatables using the orthogonal-data feature. It is definitely exploitable from the popu...
Lookyloo 跨站脚本漏洞
Lookyloo is a website capture tool from Lookyloo open source. A cross-site scripting vulnerability exists in Lookyloo versions prior to 1.35.3, which stems from improperly escaping orthogonal data in datatables and could lead to a cross-site scripting attack...
PT-2025-48753
Name of the Vulnerable Software and Affected Versions Lookyloo versions prior to 1.35.3 Description Lookyloo is a web interface used to capture and display a tree of domains that interact with each other. Versions of Lookyloo prior to 1.35.3 improperly escape values passed to cells rendered in...
com.jgeppert.struts2.bootstrap:struts2-bootstrap-plugin (=6.0.0), com.jgeppert.struts2.bootstrap:struts2-bootstrap-showcase (=6.0.0) +53 more potentially affected by CVE-2025-64775 via org.apache.struts:struts2-core (>=7.0.0 <=7.0.3)
org.apache.struts:struts2-core MAVEN version =7.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.3 and more Source cves: CVE-2025-64775 Source advisory: OSV:GHSA-XX7V-HQXH-CJR9...
EUVD-2021-23307
Malware in sbrugna...
EUVD-2020-0590
Malware in sbrugna...