21 matches found
EUVD-2017-0022
Malware in sbrugna...
EUVD-2022-2458
Malicious code in bioql PyPI...
GHSA-4WC5-GFGH-4VJX EpicEditor XSS Vulnerability
EpicEditor through 0.2.3 has Cross-Site Scripting because of an insecure default marked.js configuration. An example attack vector is a crafted IMG element in an HTML document...
EpicEditor XSS Vulnerability
EpicEditor through 0.2.3 has Cross-Site Scripting because of an insecure default marked.js configuration. An example attack vector is a crafted IMG element in an HTML document...
GHSA-XP5M-4C9F-498Q django-epiceditor vulnerable to XSS in form field
There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted content in a form field...
django-epiceditor vulnerable to XSS in form field
There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted content in a form field...
Cross-site Scripting (XSS)
epiceditor is vulnerable to cross-site scripting XSS attacks. The vulnerability is possible because it does not escape the input tags when rendering a page using marked.js...
Epiceditor – Cross-Site Scripting(CVE-2017-6589)
EpicEditor Introduction EpicEditor is an embeddable JavaScript Markdown editor with split fullscreen editing, live previewing, automatic draft saving, offline support, and more. For developers, it offers a robust API, can be easily themed, and allows you to swap out the bundled Markdown parser wi...
Cross site scripting vulnerability in django-epiceditor(CVE-2017-6591)
Introduction django-epiceditor A django app that allows the easy addition of EpicEditor markdown editor to a django form field, whether in a custom app or the Django Admin. The project url: https://pypi.python.org/pypi/django-epiceditor Environment django==1.10.6 django-epiceditor==0.2.3...
PYSEC-2017-86
There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted content in a form field...
PYSEC-2017-86
There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted content in a form field...
CVE-2017-6591
There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted content in a form field...
Cross site scripting
There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted content in a form field...
CVE-2017-6591
There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted content in a form field...
CVE-2017-6591
CVE-2017-6591 affects django-epiceditor 0.2.3 and is a cross-site scripting (XSS) vulnerability triggered by crafted content in a form field. The root cause is an input handling flaw that allows malicious payloads to be reflected or processed in a way that could execute script in a victim’s brows...
CVE-2017-6591
There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted content in a form field...
CVE-2017-6589
EpicEditor through 0.2.3 has Cross-Site Scripting because of an insecure default marked.js configuration. An example attack vector is a crafted IMG element in an HTML document...
CVE-2017-6589
EpicEditor through 0.2.3 has Cross-Site Scripting because of an insecure default marked.js configuration. An example attack vector is a crafted IMG element in an HTML document...
Cross site scripting
EpicEditor through 0.2.3 has Cross-Site Scripting because of an insecure default marked.js configuration. An example attack vector is a crafted IMG element in an HTML document...
CVE-2017-6589
EpicEditor through 0.2.3 has Cross-Site Scripting because of an insecure default marked.js configuration. An example attack vector is a crafted IMG element in an HTML document...