5752 matches found
CVE-2022-31103
Lettersanitizer is a DOM-based HTML email sanitizer. All versions below 1.0.2 are affected by a denial-of-service when processing the CSS at-rule @keyframes. The issue also affects React Letter via dependency on lettersanitizer. Root cause: improper handling of CSS at-rules in the sanitizer, lead...
CVE-2022-31103 Improper handling of CSS at-rules in lettersanitizer
lettersanitizer is a DOM-based HTML email sanitizer for in-browser email rendering. All versions of lettersanitizer below 1.0.2 are affected by a denial of service issue when processing a CSS at-rule @keyframes. This package is depended on by react-letter, therefore everyone using react-letter is...
urologie.slingeland.nl Cross Site Scripting vulnerability OBB-2681957
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Improper handling of CSS at-rules in lettersanitizer
Impact All versions of lettersanitizer below 1.0.2 are affected by a denial of service issue when processing a CSS at-rule @keyframes. This package is depended on by react-letter, therefore everyone using react-letter is also at risk. Patches The problem has been patched in version 1.0.2...
GHSA-7R3R-GQ8P-V9JJ Improper handling of CSS at-rules in lettersanitizer
Impact All versions of lettersanitizer below 1.0.2 are affected by a denial of service issue when processing a CSS at-rule @keyframes. This package is depended on by react-letter, therefore everyone using react-letter is also at risk. Patches The problem has been patched in version 1.0.2...
Malicious code in base-css-styles (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f81c6f392029b9702f5a17b445a87e8a4378d5931d872e0755c58ae4c55ea005 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-1465 Malicious code in base-css-styles (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f81c6f392029b9702f5a17b445a87e8a4378d5931d872e0755c58ae4c55ea005 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wordpress-core-css (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da64c82d79dc32b8d356985ee58045d432733c7b1b8d0eb737dcaa34e447d4dc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-7219 Malicious code in wordpress-core-css (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da64c82d79dc32b8d356985ee58045d432733c7b1b8d0eb737dcaa34e447d4dc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in usaa-css-grids (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6b114773123a89d4d00f86e30e996e132fd45058c3d5d186d3f59e8cd303f7fe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-6835 Malicious code in usaa-css-grids (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6b114773123a89d4d00f86e30e996e132fd45058c3d5d186d3f59e8cd303f7fe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in feast-css (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a9020fe08dcbac061c9250afcb7701400417ae8dcde091ca3474f8b54a8ad8cd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in grunt-retina-css (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8ed83103eb9e61c845a6b73a155a856ed96db758a8686c6870435465a579676c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-3479 Malicious code in grunt-retina-css (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8ed83103eb9e61c845a6b73a155a856ed96db758a8686c6870435465a579676c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in scale-css-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6fb2cb0dd597cbe85b6778b2a375cb19f30f3e468e0e9876e476f6e8db9bf5cc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5957 Malicious code in scale-css-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6fb2cb0dd597cbe85b6778b2a375cb19f30f3e468e0e9876e476f6e8db9bf5cc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in scale-css-loaderx (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8cd7ab267b463eac2a358a63661972431325d7095e7085f03e9690e6743a3699 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in fitbit-css-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6212daf71fae3c165b5999556ea9f8e25fb08b5d0e5beb46b543b50ddf56c46b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-3059 Malicious code in fitbit-css-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6212daf71fae3c165b5999556ea9f8e25fb08b5d0e5beb46b543b50ddf56c46b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in external-js-css (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c06d2f4db7e9efc9676f195c4794c9b02fb52e277ad85db8059db8803081e15 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...