5 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-1370
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incomplete blacklist vulnerability in marked 0.3.2 and earlier for Node.js allows remote attackers to conduct cross-site scripting XSS attacks via a vbscript ta...
CVE-2015-1370
creationtimestamp| type| source ---|---|--- 2017-10-24 18:33:36+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-cfjh-p3g4-3q2f...
08cms (=1.0.0), 0ad-tools (=0.0.1) +8749 more potentially affected by CVE-2015-1370 via marked (>=0.0.1 <=0.3.2)
marked NPM version =0.0.1, =0.0.1, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.1 and more Source cves: CVE-2015-1370 Source advisory: OSV:GHSA-CFJH-P3G4-3Q2F...
DEBIAN-CVE-2015-1370
Incomplete blacklist vulnerability in marked 0.3.2 and earlier for Node.js allows remote attackers to conduct cross-site scripting XSS attacks via a vbscript tag in a link...
CVE-2015-1370
Incomplete blacklist vulnerability in marked 0.3.2 and earlier for Node.js allows remote attackers to conduct cross-site scripting XSS attacks via a vbscript tag in a link...