The vulnerability of the license_details_view function in the ScanCode.io software, which allows a hacker to perform XSS attacks.

The vulnerability of the licensedetailsview function in the ScanCode.io software exists because measures to protect the structure of web pages have not been implemented. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks remotely...

The vulnerability of the fetch_docker_image() function in the automation tool for software analysis, ScanCode.io, allows a hacker to execute arbitrary commands.

The vulnerability of the fetchdockerimage function in the automation tool for software analysis, ScanCode.io, is related to the lack of protective measures taken for the structure of the web page during the processing of the dockerreference parameter. Exploiting this vulnerability allows a remote...

PT-2023-4304 · Docker · Docker

Name of the Vulnerable Software and Affected Versions: ScanCode.io versions prior to 32.5.1 Description: The issue is related to a command injection vulnerability in the docker fetch process. This vulnerability allows malicious commands to be appended to the docker reference parameter. The docker...