25 matches found
CVE-2023-45885
Cross Site Scripting XSS vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to run arbitrary code via the new component feature in the flexibleLayout plugin...
CVE-2023-45282
In NASA Open MCT aka openmct before 3.1.0, prototype pollution can occur via an import action...
EUVD-2023-3040
Malicious code in bioql PyPI...
EUVD-2023-2650
Malicious code in bioql PyPI...
EUVD-2023-2875
Malicious code in bioql PyPI...
CVE-2023-45884
Cross Site Request Forgery CSRF vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to view sensitive information via the flexibleLayout plugin...
GHSA-V8FC-QXVJ-F3MG NASA Open MCT Cross Site Scripting vulnerability
Cross Site Scripting XSS vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to run arbitrary code via the new component feature in the flexibleLayout plugin...
CVE-2023-45884
Cross Site Request Forgery CSRF vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to view sensitive information via the flexibleLayout plugin...
CVE-2023-45885
Cross Site Scripting XSS vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to run arbitrary code via the new component feature in the flexibleLayout plugin...
CVE-2023-45885
Cross Site Scripting XSS vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to run arbitrary code via the new component feature in the flexibleLayout plugin...
CVE-2023-45884
Cross Site Request Forgery CSRF vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to view sensitive information via the flexibleLayout plugin...
CVE-2023-45884
Cross Site Request Forgery CSRF vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to view sensitive information via the flexibleLayout plugin...
Cross site request forgery (csrf)
Cross Site Request Forgery CSRF vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to view sensitive information via the flexibleLayout plugin...
Cross site scripting
Cross Site Scripting XSS vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to run arbitrary code via the new component feature in the flexibleLayout plugin...
CVE-2023-45885
Cross Site Scripting XSS vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to run arbitrary code via the new component feature in the flexibleLayout plugin...
NASA Open MCT Security Vulnerability
NASA Open MCT is an open source open mission control technology from NASA, Inc. for visualizing data on desktop and mobile devices. A security vulnerability exists in NASA Open MCT 3.1.0 and earlier versions, which stems from the presence of a cross-site scripting XSS vulnerability that allows an...
CVE-2023-45884
CVE-2023-45884 is a CSRF vulnerability in NASA Open MCT (openmct) up to and including version 3.1.0, exposed via the flexibleLayout plugin. Attackers can view sensitive information; the available documents do not specify a fixed patch or remediation, only that the issue exists through 3.1.0.
CVE-2023-45884
Cross Site Request Forgery CSRF vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to view sensitive information via the flexibleLayout plugin...
CVE-2023-45885
Cross Site Scripting XSS vulnerability in NASA Open MCT aka openmct through 3.1.0 allows attackers to run arbitrary code via the new component feature in the flexibleLayout plugin...
Prototype Pollution in NASA Open MCT
In NASA Open MCT aka openmct before commit 545a177 is subject to a prototype pollution which can occur via an import action...