23 matches found
Unspecified vulnerability in radare2
radare2 is a set of libraries and tools for working with binary files. A security vulnerability exists in radare2 4.0.0 and earlier versions, which stems from the program not validating content variables. An attacker can exploit the vulnerability to perform arbitrary write operations with special...
knockout: Cross-site Scripting (XSS) attacks due to not escaping the name attribute.
There is a vulnerability in knockout before version 3.5.0-beta, where after escaping the context of the web application, the web application delivers data to its users along with other trusted dynamic content, without validating it...
angular: Cross-site Scripting (XSS) due to no proper sanitization of xlink:href attributes
A cross-site scripting XSS flaw was found in Angular. This flaw occurs due to improper sanitation of xlink:href attributes, which allows the web application to deliver data to users, along with other trusted content, without proper validation...