EUVD-2021-17071

Malware in sbrugna...

EUVD-2021-29732

Malicious code in bioql PyPI...

CVE-2021-42776

CloverDX Server before 5.11.2 and and 5.12.x before 5.12.1 allows XXE during configuration import...

CVE-2021-30133

A cross-site scripting XSS vulnerability in CloverDX Server 5.9.0, CloverDX 5.8.1, CloverDX 5.7.0, and earlier allows remote attackers to inject arbitrary web script or HTML via the sessionToken parameter of multiple methods in Simple HTTP API. This is resolved in 5.9.1 and 5.10...

CVE-2021-42776

CloverDX Server before 5.11.2 and and 5.12.x before 5.12.1 allows XXE during configuration import...

CVE-2021-42776

CloverDX Server before 5.11.2 and and 5.12.x before 5.12.1 allows XXE during configuration import...

Design/Logic Flaw

CloverDX Server before 5.11.2 and and 5.12.x before 5.12.1 allows XXE during configuration import...

CVE-2021-42776

CloverDX Server before 5.11.2 and and 5.12.x before 5.12.1 allows XXE during configuration import...

CVE-2021-42776

CVE-2021-42776 affects CloverDX Server before 5.11.2 and CloverDX 5.12.x before 5.12.1, where XML External Entity (XXE) processing is vulnerable during configuration import. Impact per sources is limited to the XXE exposure; CVSS indicates at least a High impact on confidentiality with no integri...

CVE-2021-30133

CVE-2021-30133 affects CloverDX Server (versions 5.9.0, 5.8.1, 5.7.0 and earlier). The issue is a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via the sessionToken parameter of multiple methods in the Simple HTTP API. Impact per the ...

CloverDX Server 跨站脚本漏洞

CloverDX is an enterprise data management platform designed to solve demanding real-world data challenges. Design, automate, manipulate and publish data. A cross-site scripting vulnerability exists in CloverDX Server, which stems from a cross-site scripting XSS vulnerability in CloverDX Server...