Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2024-42784

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00223EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/08/18 7:26 p.m.30 views

Security Bulletin: Carbon design system packages

Summary Various packages are vulnerable to multiples CVEs and can be resolved by updating to [email protected], @carbon/[email protected], @carbon/[email protected], @carbon/[email protected], @carbon/[email protected], @carbon/[email protected], @carbon/[email protected], @carbon/[email protected]....

9.8CVSS8AI score0.03299EPSS
Exploits6Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 8:59 a.m.7 views

CVE-2024-47117

IBM Carbon Design System Carbon Charts 0.4.0 through 1.13.16 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...

5.4CVSS6.2AI score0.00223EPSS
Exploits0References1
CNVD
CNVD
added 2024/12/13 12:0 a.m.5 views

IBM Carbon Design System Cross-Site Scripting Vulnerability

IBM Carbon Design System is a design system for building user interfaces. A cross-site scripting vulnerability exists in IBM Carbon Design System. The vulnerability stems from insufficient validation of user input. An attacker can exploit the vulnerability to embed arbitrary JavaScript code in th...

5.4CVSS6AI score0.00223EPSS
Exploits0References1
NVD
NVD
added 2024/12/10 2:30 p.m.33 views

CVE-2024-47117

IBM Carbon Design System Carbon Charts 0.4.0 through 1.13.16 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...

5.4CVSS0.00223EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/10 1:49 p.m.8 views

CVE-2024-47117 IBM Carbon Design System cross-site scripting

IBM Carbon Design System Carbon Charts 0.4.0 through 1.13.16 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...

5.4CVSS6.4AI score0.00223EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/10 1:49 p.m.18 views

CVE-2024-47117 IBM Carbon Design System cross-site scripting

IBM Carbon Design System Carbon Charts 0.4.0 through 1.13.16 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...

5.4CVSS0.00223EPSS
Exploits0References1
CVE
CVE
added 2024/12/10 1:49 p.m.58 views

CVE-2024-47117

The CVE-2024-47117 entry concerns IBM Carbon Design System (Carbon Charts) with versions 0.4.0–1.13.16 affected by cross-site scripting. The root cause is improper handling/sanitization of user-provided HTML, enabling an authenticated user to embed arbitrary JavaScript in the Web UI, potentially ...

5.4CVSS5.2AI score0.00223EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/12/10 12:0 a.m.4 views

IBM Carbon Design System 跨站脚本漏洞

IBM Carbon Design System is a design system for building user interfaces. A cross-site scripting vulnerability exists in IBM Carbon Design System. The vulnerability stems from insufficient validation of user input. An attacker can exploit the vulnerability to embed arbitrary JavaScript code in th...

5.4CVSS6.1AI score0.00223EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/12/09 6:49 p.m.10 views

Security Bulletin: "Carbon Charts" is vulnerable to Cross-site Scripting due to Improper Neutralization of Input During Web Page Generation (CWE-79)

Summary The issue arises from the library not sanitizing custom HTML provided by developers, allowing potentially harmful scripts to be executed in the user's browser when interacting with the chart. Vulnerability Details CVEID:CVE-2024-47117 DESCRIPTION: IBM Carbon Design System is vulnerable to...

5.4CVSS5.8AI score0.00223EPSS
Exploits0Affected Software1
Rows per page
Query Builder