4 matches found
vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-35622 via openclaw (=0.0.1)
openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-35622 Source advisory: OSV:GHSA-MP66-RF4F-MHH8...
vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-28394 via openclaw (=0.0.1)
openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-28394 Source advisory: OSV:GHSA-P536-VVPP-9MC8...
Bootstrap 跨站脚本漏洞
Bootstrap is a web front-end framework developed using HTML, CSS, and JavaScript. Bootstrap versions v3.1.11 and v3.3.7 are vulnerable to a cross-site scripting vulnerability that originates in the Title parameter in /vendor/views/addproduct.php. An attacker could exploit this vulnerability to...
BlogEngine Path Traversal Vulnerability
BlogEngine is an open source ASP.NET blog system . The system supports Ajax comments , custom themes and so on. A path traversal vulnerability exists in BlogEngine 3.3.7 and earlier versions. The vulnerability stems from the failure of a network system or product to properly filter special elemen...