20 matches found
Malicious Package
Overview api-umbrella-admin-ui is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in api-umbrella-admin-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f5afbcc650f7845d47544c5033aba92c5a2ab80d2e0d27e99437ef31cc6c249 The package api-umbrella-admin-ui was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-205515
Malicious code in api-umbrella-admin-ui npm...
EUVD-2015-1091
Malware in sbrugna...
EUVD-2015-1085
Malware in sbrugna...
CVE-2015-10080
A vulnerability was found in NREL api-umbrella-web 0.7.1. It has been classified as problematic. This affects an unknown part of the component Admin Data Table Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 0.8.0 is ab...
CVE-2015-10072
A vulnerability classified as problematic was found in NREL api-umbrella-web 0.7.1. This vulnerability affects unknown code of the component Flash Message Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 0.8.0 is able to address...
CVE-2015-10080
A vulnerability was found in NREL api-umbrella-web 0.7.1. It has been classified as problematic. This affects an unknown part of the component Admin Data Table Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 0.8.0 is ab...
Cross site scripting
A vulnerability was found in NREL api-umbrella-web 0.7.1. It has been classified as problematic. This affects an unknown part of the component Admin Data Table Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 0.8.0 is ab...
CVE-2015-10080 NREL api-umbrella-web Admin Data Table cross site scripting
A vulnerability was found in NREL api-umbrella-web 0.7.1. It has been classified as problematic. This affects an unknown part of the component Admin Data Table Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 0.8.0 is ab...
CVE-2015-10080 NREL api-umbrella-web Admin Data Table cross site scripting
A vulnerability was found in NREL api-umbrella-web 0.7.1. It has been classified as problematic. This affects an unknown part of the component Admin Data Table Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 0.8.0 is ab...
CVE-2015-10080
CVE-2015-10080 affects NREL api-umbrella-web 0.7.1, specifically the Admin Data Table Handler component, where a cross-site scripting vulnerability exists. The issue can be triggered remotely. Upgrading to version 0.8.0 fixes the vulnerability (patch f53a9fb87e10c457f0f3dd4f2af24d3b2f21b3ca). Exp...
API Umbrella Web 跨站脚本漏洞
API Umbrella Web is an open source library from National Renewable Energy Laboratory. A cross-site scripting vulnerability exists in API Umbrella Web version 0.7.1, which stems from an issue with an unknown portion of the component Admin Data Table Handler that can lead to a cross-site scripting...
CVE-2015-10072
A vulnerability classified as problematic was found in NREL api-umbrella-web 0.7.1. This vulnerability affects unknown code of the component Flash Message Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 0.8.0 is able to address...
Cross site scripting
A vulnerability classified as problematic was found in NREL api-umbrella-web 0.7.1. This vulnerability affects unknown code of the component Flash Message Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 0.8.0 is able to address...
CVE-2015-10072
CVE-2015-10072 affects NREL api-umbrella-web 0.7.1. The Flash Message Handler contains a flaw enabling cross-site scripting that can be triggered remotely. A fix is available in version 0.8.0; the patch is identified as bcc0e922c61d30367678c8f17a435950969315cd. References confirm the vulnerabilit...
CVE-2015-10072 NREL api-umbrella-web Flash Message cross site scripting
A vulnerability classified as problematic was found in NREL api-umbrella-web 0.7.1. This vulnerability affects unknown code of the component Flash Message Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 0.8.0 is able to address...
CVE-2015-10072 NREL api-umbrella-web Flash Message cross site scripting
A vulnerability classified as problematic was found in NREL api-umbrella-web 0.7.1. This vulnerability affects unknown code of the component Flash Message Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 0.8.0 is able to address...
PT-2023-10251 · Nrel · Api-Umbrella-Web
Name of the Vulnerable Software and Affected Versions: NREL api-umbrella-web version 0.7.1 Description: A problematic issue was found in the Flash Message Handler component, leading to cross site scripting. The attack can be initiated remotely. Recommendations: For NREL api-umbrella-web version...
GSA Bounty: [api.data.gov] Leak Valid API With out Verification -
Description Remote attackers are able to retrieve a valid working api key with random Generation Process without a secure parsing or secure channel , human verification ..etc . the current proccess for requesting any api key is with signup form , and message with api delivered privately to user ,...