16 matches found
EUVD-2025-24881
Malicious code in bioql PyPI...
EUVD-2024-46053
Malicious code in bioql PyPI...
CVE-2025-55195
@std/toml is the Deno Standard Library. Prior to version 1.0.9, an attacker can pollute the prototype chain in Node.js runtime and Browser when parsing untrusted TOML data, thus achieving Prototype Pollution PP vulnerability. This is because the library is merging an untrusted object with an empt...
CVE-2025-55195
@std/toml is the Deno Standard Library. Prior to version 1.0.9, an attacker can pollute the prototype chain in Node.js runtime and Browser when parsing untrusted TOML data, thus achieving Prototype Pollution PP vulnerability. This is because the library is merging an untrusted object with an empt...
CVE-2025-55195 @std/toml Prototype Pollution in Node.js and Browser
@std/toml is the Deno Standard Library. Prior to version 1.0.9, an attacker can pollute the prototype chain in Node.js runtime and Browser when parsing untrusted TOML data, thus achieving Prototype Pollution PP vulnerability. This is because the library is merging an untrusted object with an empt...
CVE-2025-55195
The CVE-2025-55195 entry concerns @std/toml (Deno Standard Library). The vulnerability arises prior to version 1.0.9 when parsing untrusted TOML data, allowing Prototype Pollution by merging an untrusted object with an empty object whose prototype chain is inherited. This affects environments usi...
CVE-2025-55195 @std/toml Prototype Pollution in Node.js and Browser
@std/toml is the Deno Standard Library. Prior to version 1.0.9, an attacker can pollute the prototype chain in Node.js runtime and Browser when parsing untrusted TOML data, thus achieving Prototype Pollution PP vulnerability. This is because the library is merging an untrusted object with an empt...
Deno Standard Library 安全漏洞
Deno Standard Library std is a Deno Standard Library open source by Deno. A security vulnerability exists in Deno Standard Library versions prior to 1.0.9, which stems from a potential prototype contamination when parsing untrusted TOML data...
CVE-2024-52793
The Deno Standard Library provides APIs for Deno and the Web. Prior to version 1.0.11, http/file-server's serveDir with showDirListing: true option is vulnerable to cross-site scripting when the attacker is a user who can control file names in the source directory on systems with POSIX file names...
CVE-2024-52793
The Deno Standard Library provides APIs for Deno and the Web. Prior to version 1.0.11, http/file-server's serveDir with showDirListing: true option is vulnerable to cross-site scripting when the attacker is a user who can control file names in the source directory on systems with POSIX file names...
CVE-2024-52793 XSS vulnerability in serveDir API of @std/http/file-server on POSIX systems
The Deno Standard Library provides APIs for Deno and the Web. Prior to version 1.0.11, http/file-server's serveDir with showDirListing: true option is vulnerable to cross-site scripting when the attacker is a user who can control file names in the source directory on systems with POSIX file names...
CVE-2024-52793 XSS vulnerability in serveDir API of @std/http/file-server on POSIX systems
The Deno Standard Library provides APIs for Deno and the Web. Prior to version 1.0.11, http/file-server's serveDir with showDirListing: true option is vulnerable to cross-site scripting when the attacker is a user who can control file names in the source directory on systems with POSIX file names...
CVE-2024-52793
The CVE affects the Deno Standard Library, specifically http/file-server.serveDir with showDirListing: true on POSIX systems, where file names controlled by an attacker can trigger cross-site scripting. Versions prior to 1.0.11 are affected; 1.0.11 fixes the issue. Exploitation is documented as p...
CVE-2024-52793 XSS vulnerability in serveDir API of @std/http/file-server on POSIX systems
The Deno Standard Library provides APIs for Deno and the Web. Prior to version 1.0.11, http/file-server's serveDir with showDirListing: true option is vulnerable to cross-site scripting when the attacker is a user who can control file names in the source directory on systems with POSIX file names...
Deno Standard Library 跨站脚本漏洞
Deno Standard Library std is a Deno Standard Library open source by Deno. A cross-site scripting vulnerability exists in Deno Standard Library versions prior to 1.0.11. An attacker exploiting this vulnerability could perform a cross-site scripting attack...
PT-2024-35445 · Deno · Deno Standard Library
Name of the Vulnerable Software and Affected Versions: Deno Standard Library versions prior to 1.0.11 Description: The issue affects the Deno Standard Library, specifically the http/file-server module's serveDir function when used with the showDirListing: true option. This setup is vulnerable to...