Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:17 p.m.3 views

CVE-2026-32732

Lean 4 VS Code Extension is a Visual Studio Code extension for the Lean 4 proof assistant. Projects that use @leanprover/unicode-input-component are vulnerable to an XSS exploit in 0.1.9 of the package and lower. The component re-inserted text in the input element back into the input element as...

5.7AI score0.00327EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/16 4:39 p.m.5 views

EUVD-2026-12181

XSS in @leanprover/unicode-input-component...

5.8AI score0.00327EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/13 9:43 p.m.6 views

CVE-2026-32732 XSS in @leanprover/unicode-input-component

Lean 4 VS Code Extension is a Visual Studio Code extension for the Lean 4 proof assistant. Projects that use @leanprover/unicode-input-component are vulnerable to an XSS exploit in 0.1.9 of the package and lower. The component re-inserted text in the input element back into the input element as...

5.7AI score0.00327EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/13 9:43 p.m.42 views

CVE-2026-32732 XSS in @leanprover/unicode-input-component

Lean 4 VS Code Extension is a Visual Studio Code extension for the Lean 4 proof assistant. Projects that use @leanprover/unicode-input-component are vulnerable to an XSS exploit in 0.1.9 of the package and lower. The component re-inserted text in the input element back into the input element as...

0.00327EPSS
Exploits0References3
CVE
CVE
added 2026/03/13 9:43 p.m.27 views

CVE-2026-32732

CVE-2026-32732 describes an XSS issue in Lean 4 VS Code Extension caused by the @leanprover/unicode-input-component. The component re-inserted text into the input element as unescaped HTML, making versions 0.1.9 and earlier vulnerable. The issue affects projects using the affected component and c...

5.7AI score0.00327EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/13 12:0 a.m.13 views

PT-2026-25402

Lean 4 VS Code Extension is a Visual Studio Code extension for the Lean 4 proof assistant. Projects that use @leanprover/unicode-input-component are vulnerable to an XSS exploit in 0.1.9 of the package and lower. The component re-inserted text in the input element back into the input element as...

5.7AI score0.00327EPSS
Exploits0References7
Rows per page
Query Builder