9 matches found
EUVD-2022-2003
Malicious code in bioql PyPI...
filp whoops Cross-site Scripting vulnerability
The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has a Cross-site Scripting vulnerability...
Cross-site Scripting (XSS)
filp/whoops is vulnerable to cross-site scripting XSS attacks. The library does not sanitize the parameters in the dump function in the src/Whoops/Util/TemplateHelper.php file before printing them, allowing a malicious user to inject and execute arbitrary web script...
filp whoops cross-site scripting vulnerability
whoops is an open source PHP stack error handling system . A cross-site scripting vulnerability exists in the 'dump' function of the Util/TemplateHelper.php file in versions of filp whoops prior to 2.1.13. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...
CVE-2017-16880
The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has XSS...
Cross site scripting
The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has XSS...
CVE-2017-16880
The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has XSS...
CVE-2017-16880
The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has XSS...
CVE-2017-16880
The CVE-2017-16880 entry concerns the filp whoops PHP library. Affected component: the dump() function in Util/TemplateHelper.php. Root cause: the function allows Cross-site Scripting (XSS) in versions before 2.1.13. The impact is XSS via output of unsanitized data; no explicit exploitation detai...