8 matches found
EUVD-2025-113064
Malicious code in gridsome-optimize-css-assets-webpack-plugin-request-aurora npm...
catalog.auroralibrary.org Cross Site Scripting vulnerability OBB-3738400
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
catalog.auroralibrary.org Cross Site Scripting vulnerability OBB-3682970
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
catalog.auroralibrary.org Cross Site Scripting vulnerability OBB-3556514
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
catalog.auroralibrary.org Cross Site Scripting vulnerability OBB-3488889
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
catalog.auroralibrary.org Cross Site Scripting vulnerability OBB-3458055
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
catalog.auroralibrary.org Cross Site Scripting vulnerability OBB-3034914
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
The vulnerability of the Aurora Application Programming Library’s ini library involves uncontrolled changes to object prototype attributes, allowing attackers to execute “prototype pollution” attacks.
The vulnerability of the Aurora Application Programming Library’s ini configuration library is related to uncontrolled changes to object prototypes’ attributes. Exploiting this vulnerability could allow a malicious actor to execute a “prototype pollution” attack remotely...