Lucene search
K

7 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in @zalastax/nolb-fup (npm)

The package @zalastax/nolb-fup was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-11553 Malicious code in @zalastax/nolb-fup (npm)

The package @zalastax/nolb-fup was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2019/11/27 7:15 p.m.1 views

DEBIAN-CVE-2014-3875

The addto parameter to fup in Frams' Fast File EXchange FEX, aka fex before fex-2014053 allows remote attackers to conduct cross-site scripting XSS attacks...

6.1CVSS5.8AI score0.0167EPSS
Exploits3References1
Debian CVE
Debian CVE
added 2014/06/18 2:0 p.m.26 views

CVE-2014-3877

Incomplete blacklist vulnerability in Frams' Fast File EXchange FEX, aka fex before fex-20140530 allows remote attackers to conduct cross-site scripting XSS attacks via the addto parameter to fup...

4.3CVSS5.6AI score0.01914EPSS
Exploits3
NVD
NVD
added 2012/09/25 11:55 p.m.30 views

CVE-2012-0869

Cross-site scripting XSS vulnerability in fup in Frams' Fast File EXchange FEX, aka fex before 20120215 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS5.5AI score0.04852EPSS
Exploits0References11
Cvelist
Cvelist
added 2012/09/25 11:0 p.m.38 views

CVE-2012-0869

Cross-site scripting XSS vulnerability in fup in Frams' Fast File EXchange FEX, aka fex before 20120215 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

5.4AI score0.04852EPSS
Exploits0References11
OSV
OSV
added 2012/02/21 12:0 a.m.25 views

DSA-2414-1 fex - cross-site scripting

Bulletin has no description...

4.3CVSS6AI score0.04852EPSS
Exploits1
Rows per page
Query Builder