6 matches found
CVE-2025-1467
Versions of the package tarteaucitronjs before 1.17.0 are vulnerable to Cross-site Scripting XSS via the getElemWidth and getElemHeight. This is related to SNYK-JS-TARTEAUCITRONJS-8366541...
CVE-2025-1467
Versions of the package tarteaucitronjs before 1.17.0 are vulnerable to Cross-site Scripting XSS via the getElemWidth and getElemHeight. This is related to SNYK-JS-TARTEAUCITRONJS-8366541...
CVE-2025-1467
The CVE-2025-1467 entry concerns tarteaucitronjs versions before 1.17.0, which are vulnerable to Cross-site Scripting (XSS) via the getElemWidth() and getElemHeight() functions. Multiple sources (NVD, Red Hat, Veracode, OSV, CIRCL, GHSA) consistently describe the flaw as an XSS issue rooted in in...
CVE-2025-1467
Versions of the package tarteaucitronjs before 1.17.0 are vulnerable to Cross-site Scripting XSS via the getElemWidth and getElemHeight. This is related to SNYK-JS-TARTEAUCITRONJS-8366541...
tarteaucitron.js 安全漏洞
tarteaucitron.js is a cookie manager for the Amauri CHAMPEAUX individual developer. A security vulnerability exists in tarteaucitron.js version 1.17.0, which stems from the getElemWidth and getElemHeight functions containing a cross-site scripting vulnerability...
Cross-site Scripting (XSS)
Overview tarteaucitronjs is a package that provides compliance to the European cookie law. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the getElemWidth and getElemHeight. This is related to SNYK-JS-TARTEAUCITRONJS-8366541 Details Cross-site scripting or XSS is...