Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/11/22 6:16 p.m.3 views

Malicious code in ap-components-react (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b75060f671ee7ecddf3938775343212154c5eb91d9e4fba478a1f6062457b9c8 The OpenSSF Package Analysis project identified 'ap-components-react' @ 3.15.9 npm as malicious. It is considered malicious because: - The packa...

6.9AI score
Exploits0
OSV
OSVadded 2024/11/22 6:16 p.m.3 views

MAL-2024-10879 Malicious code in ap-components-react (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b75060f671ee7ecddf3938775343212154c5eb91d9e4fba478a1f6062457b9c8 The OpenSSF Package Analysis project identified 'ap-components-react' @ 3.15.9 npm as malicious. It is considered malicious because: - The packa...

7.1AI score
Exploits0
OSV
OSVadded 2024/06/25 12:30 p.m.5 views

MAL-2024-1841 Malicious code in brkr-lib-components-react (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSV
OSVadded 2022/02/25 3:36 p.m.28 views

GHSA-MF22-92PM-M8P8 Cross site scripting in @awsui/components-react

Impact Components could potentially allow cross-site scripting XSS in certain circumstances. These components could render content without adequate neutralization. Patches Fixed in 3.0.367...

8.8CVSS6.7AI score0.00391EPSS
Exploits0References4
OSV
OSVadded 2022/02/24 7:55 p.m.2 views

CVE-2022-24709 Cross site scripting in @awsui/components-react

@awsui/components-react is the main AWS UI package which contains React components, with TypeScript definitions designed for user interface development. Multiple components in versions before 3.0.367 have been found to not properly neutralize user input and may allow for javascript injection. Use...

8.8CVSS7AI score0.00391EPSS
Exploits0References4
CVE
CVEadded 2022/02/24 7:55 p.m.70 views

CVE-2022-24709

The CVE-2022-24709 entry concerns @awsui/components-react (the AWS UI React component library). Affected versions before 3.0.367 fail to properly neutralize user input, which may permit JavaScript injection (XSS) when rendering content. The issue has been characterized across multiple sources as ...

8.8CVSS7AI score0.00391EPSS
Exploits0References2Affected Software1
CNNVD
CNNVDadded 2022/02/24 12:0 a.m.2 views

components-react 跨站脚本漏洞

components-react is a set of React components that help create intuitive, responsive and accessible user experiences for web applications. A cross-site scripting vulnerability exists in versions prior to @awsui/components-react 3.0.367 that could allow javascript injection...

8.8CVSS6.8AI score0.00391EPSS
Exploits0References4
Rows per page
Query Builder