EUVD-2018-0221

Malware in sbrugna...

GHSA-JJ6G-7J8P-7GF2 Cross-Site Scripting in bracket-template

All versions of bracket-template are vulnerable to stored cross-site scripting XSS. This is exploitable when a variable passed in via a GET parameter is used in a template. Recommendation No fix is currently available for this vulnerability. It is our recommendation to not install or use this...

@27works/posto (=2.0.2), jstransformer-bracket-template (=0.0.1) +1 more potentially affected by unknown CVE via bracket-template (=1.1.5)

bracket-template NPM version =1.1.5 is affected by a known vulnerability. The following packages have a transitive dependency on bracket-template and may be impacted: - @27works/posto =2.0.2 - jstransformer-bracket-template =0.0.1 - roo-bid =0.0.5, =0.0.7 Source cves: unknown CVE Source advisory:...

Cross-Site Scripting in bracket-template

All versions of bracket-template are vulnerable to stored cross-site scripting XSS. This is exploitable when a variable passed in via a GET parameter is used in a template. Recommendation No fix is currently available for this vulnerability. It is our recommendation to not install or use this...

@27works/posto (=2.0.2), jstransformer-bracket-template (=0.0.1) +1 more potentially affected by CVE-2018-3735 via bracket-template (=1.1.5)

bracket-template NPM version =1.1.5 is affected by a known vulnerability. The following packages have a transitive dependency on bracket-template and may be impacted: - @27works/posto =2.0.2 - jstransformer-bracket-template =0.0.1 - roo-bid =0.0.5, =0.0.7 Source cves: CVE-2018-3735 Source advisor...

GHSA-488M-6GH8-9J36 bracket-template vulnerable to reflected XSS

bracket-template suffers from reflected XSS possible when variable passed via GET parameter is used in template...

Bracket-template Cross-Site Scripting Vulnerability

bracket-template is a JavaScript template library for modern browsers. A cross-site scripting vulnerability exists in bracket-template. This vulnerability can be exploited by a remote attacker to inject malicious code via GET parameters...

CVE-2018-3735

bracket-template suffers from reflected XSS possible when variable passed via GET parameter is used in template...

CVE-2018-3735

bracket-template suffers from reflected XSS possible when variable passed via GET parameter is used in template...

PT-2018-16159 · Bracket · Bracket-Template

Name of the Vulnerable Software and Affected Versions: bracket-template affected versions not specified Description: The issue is related to reflected XSS, which can occur when a variable passed via a GET parameter is used in a template. Recommendations: At the moment, there is no information abo...

Cross-Site Scripting

Overview All versions of bracket-template are vulnerable to stored cross-site scripting XSS. This is exploitable when a variable passed in via a GET parameter is used in a template. Recommendation No fix is currently available for this vulnerability. It is our recommendation to not install or use...