EUVD-2006-4037

Malware in sbrugna...

Cross-Site Scripting (XSS)

@jitbit/htmlsanitizer is vulnerable to cross-site scripting. The vulnerability is due to improper sanitization caused by the code beautifier running after sanitation when used with a contentEditable element, allows an attacker to inject and execute malicious scripts in a victim’s browser...

CVE-2025-29771

HtmlSanitizer is a client-side HTML Sanitizer. Versions prior to 2.0.3 have a cross-site scripting vulnerability when the sanitizer is used with a contentEditable element to set the elements innerHTML to a sanitized string produced by the package. If the code is particularly crafted to abuse the...

GHSA-VHV4-FH94-JM5X JS Html Sanitizer allows XSS when used with contentEditable

Impact XSS vulnerability when the sanitizer is used with a contentEditable element to set the elements innerHTML to a sanitized string produced by the package. If the code is particularly crafted to abuse the code beautifier, that runs AFTER sanitation. Patches Patched in version 2.0.3...

MAL-2025-908 Malicious code in code-beautifyer (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 1aa07cb2a8c34d8fc5a6728b0985541456937811451149748ae9acdef4892e7c During installation, the package collects quite extensive information about the host and has no other purpose. To avoid detection, the real code is put in a ZI...

Mhf - Mobile Helper Framework - A Tool That Automates The Process Of Identifying The Framework/Technology Used To Create A Mobile Application

Mobile Helper Framework is a tool that automates the process of identifying the framework/technology used to create a mobile application. Additionally, it assists in finding sensitive information or provides suggestions for working with the identified platform. How work? The tool searches for fil...

[SECURITY] Fedora 38 Update: indent-2.2.13-5.fc38

Indent is a GNU program for beautifying C code, so that it is easier to read. Indent can also convert from one C writing style to a different one. Indent understands correct C syntax and tries to handle incorrect C syntax. Install the indent package if you are developing applications in C and you...

js-beautify 安全漏洞

js-beautify is beautify-web open source a javascript beautifier . A security vulnerability exists in beautify-web js-beautify version 1.13.7, which stems from the discovery of a contained prototype contamination vulnerability via the name variable in options.js...

[SECURITY] Fedora 36 Update: xq-0.0.7-5.fc36

Command line XML beautifier and content extractor. Similar to jq...

Fedora: Security Advisory for xq (FEDORA-2022-3969b64d4b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 35 Update: xq-0.0.7-4.fc35

Command line XML beautifier and content extractor. Similar to jq...

Fedora: Security Advisory for xq (FEDORA-2022-fae3ecee19)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 36 Update: xq-0.0.7-4.fc36

Command line XML beautifier and content extractor. Similar to jq...

[SECURITY] Fedora 36 Update: xq-0.0.7-3.fc36

Command line XML beautifier and content extractor. Similar to jq...

Fedora: Security Advisory for xq (FEDORA-2022-5cbd6de569)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 34 Update: xq-0.0.7-3.fc34

Command line XML beautifier and content extractor. Similar to jq...

[SECURITY] Fedora 35 Update: xq-0.0.7-3.fc35

Command line XML beautifier and content extractor. Similar to jq...

h1-ctf: ctf walkthrough

Hi, finally managed to solve all challenges, this was my first h1ctf, some challenges were pretty nice, some others had some frustrating guessing parts, but overall it was fun. Here goes day1 to day12 walkthroughs: Day 1 we have only one asset in scope hackyholidays.h1ctf.com the main page at...

Decoder++ - An Extensible Application For Penetration Testers And Software Developers To Decode/Encode Data Into Various Formats

An extensible application for penetration testers and software developers to decode/encode data into various formats. Setup Decoder++ can be either installed by using pip or by pulling the source from this repository: Install using pip pip3 install decoder-plus-plus Overview This section provides...

DLL Hijacking Vulnerability in Kingsoft PPT Beautifier Software

Kingsoft PPT Beautifier is a PPT beautification and creation aid. Kingsoft PPT Beautifier has a DLL hijacking vulnerability, allowing attackers to exploit the vulnerability in the windows2003\windows7 environment, variable relative OFFICE software infection, even if the malicious DLL deleted from...