github docs 安全漏洞

github docs is a software application. A security vulnerability exists in github docs version 2.02.37 and earlier, which stems from incorrect manipulation of the parameter Username in the file com/DocSystem/mapping/UserMapper.xml, which could lead to an SQL injection attack...

github docs 安全漏洞

github docs is a software application. A security vulnerability exists in github docs version 2.02.36 and earlier, which stems from an incorrect manipulation of the parameter searchWord in the file src/com/DocSystem/mapping/ReposAuthMapper.xml, which could lead to an SQL injection attack...

Important: Red Hat Security Advisory: Red Hat Developer Hub 1.7.4 release.

Red Hat Developer Hub 1.7.4 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single...

africa.absa:inception-application (>=1.0.0 <=1.2.0), app.fmgp:scala-did-docs_3 (>=0.1.0-M16 <=0.1.0-M33) +3479 more potentially affected by CVE-2025-12543 via io.undertow:undertow-core (>=1.0.0.Alpha1 <=2.2.38.Final)

io.undertow:undertow-core MAVEN version =1.0.0.Alpha1, =1.0.0, =0.1.0-M16, =1.0.0, =0.4.0, =2.0.0, =1.0.2, =1.0.0, =1.2.1, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.1 and more Source cves: CVE-2025-12543 Source advisory: OSV:GHSA-J382-5JJ3-VW4J...

Malicious code in elastic-docs-v3-utilities (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc3812db2733b6d6bfaba2e5b7b08065e1b07291a2a58a6dfa589b31added3e6 The package elastic-docs-v3-utilities was found to contain malicious code. Source: ghsa-malware...

Malicious Package

Overview elastic-docs-v3-utilities is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

EUVD-2026-1105

Malicious code in elastic-docs-v3-utilities npm...

MAL-2026-85 Malicious code in elastic-docs-v3-utilities (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc3812db2733b6d6bfaba2e5b7b08065e1b07291a2a58a6dfa589b31added3e6 The package elastic-docs-v3-utilities was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-205788

Malicious code in shop-minis-docs npm...

Malicious code in shop-minis-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65062ebee33867314103794ac38067ced1fbbccad5a3f7002f8eda1a6c048bd4 The package shop-minis-docs was found to contain malicious code. Source: ghsa-malware 6edcc8bb2a5c12ec37244f9786010f29a9c7f7131c7b5b2d34d5dfbb9bc0365...

Malicious Package

Overview shop-minis-docs is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

MAL-2025-192976 Malicious code in shop-minis-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65062ebee33867314103794ac38067ced1fbbccad5a3f7002f8eda1a6c048bd4 The package shop-minis-docs was found to contain malicious code. Source: ghsa-malware 6edcc8bb2a5c12ec37244f9786010f29a9c7f7131c7b5b2d34d5dfbb9bc0365...

CVE-2025-68935

ONLYOFFICE Docs before 9.2.1 allows XSS via the Font field for the Multilevel list settings window. This is related to DocumentServer...

CVE-2025-68936

ONLYOFFICE Docs before 9.2.1 allows XSS via the Color theme name. This is related to DocumentServer...

EUVD-2025-205392

ONLYOFFICE Docs before 9.2.1 allows XSS via the Color theme name. This is related to DocumentServer...

EUVD-2025-205393

ONLYOFFICE Docs before 9.2.1 allows XSS via the Font field for the Multilevel list settings window. This is related to DocumentServer...

CVE-2025-68917

ONLYOFFICE Docs before 9.2.1 allows XSS in the textarea of the comment editing form. This is related to DocumentServer...

CVE-2025-68936

ONLYOFFICE Docs before 9.2.1 allows XSS via the Color theme name. This is related to DocumentServer...

CVE-2025-68935

ONLYOFFICE Docs before 9.2.1 allows XSS via the Font field for the Multilevel list settings window. This is related to DocumentServer...

CVE-2025-68936

ONLYOFFICE Docs before 9.2.1 allows XSS via the Color theme name. This is related to DocumentServer...