Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/11/28 3:22 p.m.2 views

Malicious code in simple-autocomplete-dropdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ae96f59d7d614e3321cbab4516936e0500129be54888468ac309eaf1ad2269ed The OpenSSF Package Analysis project identified 'simple-autocomplete-dropdown' @ 3.7.14 npm as malicious. It is considered malicious because: -...

6.9AI score
Exploits0
OSV
OSVadded 2023/11/28 3:22 p.m.7 views

MAL-2023-8623 Malicious code in simple-autocomplete-dropdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ae96f59d7d614e3321cbab4516936e0500129be54888468ac309eaf1ad2269ed The OpenSSF Package Analysis project identified 'simple-autocomplete-dropdown' @ 3.7.14 npm as malicious. It is considered malicious because: -...

7.1AI score
Exploits0
Github Security Blog
Github Security Blogadded 2022/08/29 5:34 p.m.39 views

Cross-site scripting from dynamic options in the multiselect field

Introduction Cross-site scripting XSS is a type of vulnerability that allows to execute any kind of JavaScript code inside the Panel session of the same or other users. In the Panel, a harmful script can for example trigger requests to Kirby's API with the permissions of the victim. Such...

5.9CVSS5.8AI score0.00598EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder