EUVD-2024-3108

Malicious code in bioql PyPI...

Cross-Site Scripting (XSS)

dev-lancer/minecraft-motd-parser is vulnerable to cross-site scripting XSS. The vulnerability is due to the lack of proper input validation and sanitization in the HtmlGenerator class, allowing attackers to inject malicious HTML into a web page through a malformed Minecraft server MOTD...

GHSA-Q898-FRWQ-F3QP Minecraft MOTD Parser's HtmlGenerator vulnerable to XSS

Summary The HtmlGenerator class is subject to potential cross-site scripting XSS attack through a parsed malformed Minecraft server MOTD. Context Minecraft server owners can set a so-called MOTD Message of the Day for their server that appears next to the server icon and below the server name on...

Minecraft MOTD Parser's HtmlGenerator vulnerable to XSS

Summary The HtmlGenerator class is subject to potential cross-site scripting XSS attack through a parsed malformed Minecraft server MOTD. Context Minecraft server owners can set a so-called MOTD Message of the Day for their server that appears next to the server icon and below the server name on...

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the HtmlGenerator class. An attacker can inject malicious scripts into web pages by manipulating the color and text properties of MotdItem objects while generating HTML content. Workaround Users who are not...

CVE-2024-47765

The CVE-2024-47765 entry describes an XSS vulnerability in the Minecraft MOTD Parser’s HtmlGenerator. The HtmlGenerator builds HTML from MotdItem/MotdItemCollection objects without escaping the color and text inputs, enabling injection of malicious HTML through a crafted MOTD. This affects the Ht...

CVE-2024-47765 Minecraft MOTD Parser's HtmlGenerator vulnerable to XSS

Minecraft MOTD Parser is a PHP library to parse minecraft server motd. The HtmlGenerator class is subject to potential cross-site scripting XSS attack through a parsed malformed Minecraft server MOTD. The HtmlGenerator iterates through objects of MotdItem that are contained in an object of...

CVE-2024-47765 Minecraft MOTD Parser's HtmlGenerator vulnerable to XSS

Minecraft MOTD Parser is a PHP library to parse minecraft server motd. The HtmlGenerator class is subject to potential cross-site scripting XSS attack through a parsed malformed Minecraft server MOTD. The HtmlGenerator iterates through objects of MotdItem that are contained in an object of...

PT-2024-32803 · Unknown · Minecraft Motd Parser

Name of the Vulnerable Software and Affected Versions: Minecraft MOTD Parser versions prior to 1.0.6 Description: The HtmlGenerator class in the Minecraft MOTD Parser library is subject to a potential cross-site scripting XSS attack through a parsed malformed Minecraft server MOTD. An attacker ca...

Minecraft MOTD Parser 安全漏洞

Minecraft MOTD Parser is a PHP library for parsing Minecraft servers by an individual developer jgniecki. A security vulnerability exists in Minecraft MOTD Parser 1.0.5 and earlier versions, which stems from a vulnerability in the HtmlGenerator class that is susceptible to cross-site scripting XS...