Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

The Hacker News
The Hacker Newsadded 2022/09/22 3:1 p.m.54 views

Malicious NPM Package Caught Mimicking Material Tailwind CSS Package

A malicious NPM package has been found masquerading as the legitimate software library for Material Tailwind, once again indicating attempts on the part of threat actors to distribute malicious code in open source software repositories. Material Tailwind is a CSS-based framework advertised by its...

1.5AI score
Exploits0
NVD
NVDadded 2019/10/10 10:15 p.m.15 views

CVE-2019-17495

A Cascading Style Sheets CSS injection vulnerability in Swagger UI before 3.23.11 allows attackers to use the Relative Path Overwrite RPO technique to perform CSS-based input field value exfiltration, such as exfiltration of a CSRF token value. In other words, this product intentionally allows th...

9.8CVSS9.5AI score0.11565EPSS
Exploits1References11
The Hacker News
The Hacker Newsadded 2018/09/17 9:29 a.m.204 views

Watch Out! This New Web Exploit Can Crash and Restart Your iPhone

It's 2018, and just a few lines of code can crash and restart any iPhone or iPad and can cause a Mac computer to freeze. Sabri Haddouche, a security researcher at encrypted instant messaging app Wire, revealed a proof-of-concept PoC web page containing an exploit that uses only a few lines of...

0.9AI score
Exploits0
Jake Archibald's Blog
Jake Archibald's Blogadded 2018/02/27 2:47 p.m.15 views

Third party CSS is not safe

A few days ago there was a lot of chatter about a 'keylogger' built in CSS. Some folks called for browsers to 'fix' it. Some folks dug a bit deeper and saw that it only affected sites built in React-like frameworks, and pointed the finger at React. But the real problem is thinking that third part...

7.3AI score
Exploits0
Packet Storm
Packet Stormadded 2008/10/07 12:0 a.m.17 views

ifoto-disclose.txt

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- iFoto, CSS-based GD2 photo gallery eNYe-Sec - www.enye-sec.org -- Description by the author's page -- This is yet another Web-based PHP photo gallery called, iFoto. iFoto use 90% CSS-based layout and can be customize ...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2008/10/06 12:0 a.m.48 views

iFoto, CSS-based GD2 photo gallery <= 1.0: Remote File Disclosure Vulnerability

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- iFoto, CSS-based GD2 photo gallery = 1.0: Remote File Disclosure Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- $ Program: iFoto, CSS-based GD2 photo gallery $ File...

0.5AI score
Exploits0
Rows per page
Query Builder