Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

Snyk
Snykadded 2026/02/18 10:44 p.m.3 views

Cross-site Scripting (XSS)

Overview fabric is an Object model for HTML5 canvas, and SVG-to-canvas parser. Backed by jsdom and node-canvas. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the loadFromJSON function, which is used in the FabricObjectSVGExportMixin class to deserialize...

7.6CVSS5.3AI score0.00281EPSS
Exploits1References2
OSV
OSVadded 2025/12/18 8:16 a.m.2 views

CVE-2025-58941

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Fabric fabric allows PHP Local File Inclusion.This issue affects Fabric: from n/a through = 1.5.0...

8.2CVSS7AI score
Exploits0References1
HackRead
HackReadadded 2024/11/07 6:56 p.m.9 views

Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years

The malicious Python package "Fabrice" on PyPI mimics the "Fabric" library to steal AWS credentials, affecting thousands. Learn how…...

7.2AI score
Exploits0
OSV
OSVadded 2024/03/18 6:15 a.m.5 views

CVE-2024-29154

danielmiessler fabric through 1.3.0 allows installer/client/gui/static/js/index.js XSS because of innerHTML mishandling, such as in htmlToPlainText...

7.4CVSS5.8AI score0.00351EPSS
Exploits0References1
Rows per page
Query Builder