Lucene search
K

4 matches found

vulnersOsv
vulnersOsv
added 2022/08/31 12:0 a.m.7 views

@aqsc/form-making (>=0.0.22 <=0.0.39), @ariesate/are-components (=1.0.1) +78 more potentially affected by CVE-2022-25646 via x-data-spreadsheet (>=1.1.4 <=1.1.9)

x-data-spreadsheet NPM version =1.1.4, =0.0.22, =1.1.0, =1.1.5, =0.0.1, =0.0.1, =0.0.1, =1.0.1, =1.1.6, =0.0.1, =0.0.15 and more Source cves: CVE-2022-25646 Source advisory: OSV:GHSA-X5CW-843F-R366...

6.1CVSS6.3AI score0.00695EPSS
Exploits1
Cvelist
Cvelist
added 2022/08/30 5:5 a.m.21 views

CVE-2022-25646 Cross-site Scripting (XSS)

All versions of package x-data-spreadsheet are vulnerable to Cross-site Scripting XSS due to missing sanitization of values inserted into the cells...

5.4CVSS6.2AI score0.00695EPSS
Exploits1References3
CVE
CVE
added 2022/08/30 5:5 a.m.60 views

CVE-2022-25646

All versions of x-data-spreadsheet are vulnerable to Cross-site Scripting (XSS) due to missing sanitization of values inserted into cells. The vulnerability enables injection and execution of malicious JavaScript in the browser when cell values are rendered. Public sources in the connected set (V...

6.1CVSS5.7AI score0.00695EPSS
Exploits1References3Affected Software1
vulnersOsv
vulnersOsv
added 2022/03/21 7:22 a.m.4 views

@aqsc/form-making (>=0.0.22 <=0.0.39), @ariesate/are-components (=1.0.1) +78 more potentially affected by CVE-2022-25646 via x-data-spreadsheet (>=1.1.4 <=1.1.9)

x-data-spreadsheet NPM version =1.1.4, =0.0.22, =1.1.0, =1.1.5, =0.0.1, =0.0.1, =0.0.1, =1.0.1, =1.1.6, =0.0.1, =0.0.15 and more Source cves: CVE-2022-25646 Source advisory: SNYK:JS-XDATASPREADSHEET-2430381...

6.1CVSS6.3AI score0.00695EPSS
Exploits1
Rows per page
Query Builder