FreshRSS 安全漏洞

FreshRSS is a free, self-hosted RSS aggregator from FreshRSS Open Source. A security vulnerability exists in FreshRSS versions prior to 1.26.2 that stems from improper handling of SVG icons and could lead to a cross-site scripting attack...

fontawesome-fonts bug fix update

An update is available for fontawesome-fonts. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Font Awesome gives you scalable vector icons that can instantly be...

MAL-2022-5655 Malicious code in react-nati0e-vecor-icons (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2e0e350c78d225cd75ed5e2ca0291e0d192e6892797c1a7a61c762bfcb2fe39e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-nati0e-vecor-icons (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2e0e350c78d225cd75ed5e2ca0291e0d192e6892797c1a7a61c762bfcb2fe39e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

PT-2022-22038 · Jenkins · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.321 through 2.355 Jenkins LTS versions 2.332.1 through 2.332.3 Description: The HTML output generated for new symbol-based SVG icons in Jenkins includes the title attribute of l:ionicon until Jenkins 2.334 and alt attribute...