6 matches found
EUVD-2021-21077
Malware in sbrugna...
EUVD-2023-44596
Malicious code in bioql PyPI...
PT-2025-29827
Name of the Vulnerable Software and Affected Versions Vue I18n versions 9.0.0 through 9.14.4 Vue I18n versions 10.0.0 through 10.0.7 Vue I18n versions 11.0.0 through 11.0.9 Description Vue I18n, an internationalization plugin for Vue.js, contains a flaw in the escapeParameterHtml: true option. Th...
UBUNTU-CVE-2018-5175
A mechanism to bypass Content Security Policy CSP protections on sites that have a "script-src" policy of "'strict-dynamic'". If a target website contains an HTML injection flaw an attacker could inject a reference to a copy of the "require.js" library that is part of Firefox's Developer Tools, a...
Greymatter gm.cgi HTML injection flaw
The remote host is using Greymatter, an opensource weblogging and journal software written in perl. A vulnerability exists in this version which may allow an attacker to execute arbitrary HTML and script code in the context of the user's browser. OpenVAS Vulnerability Test $Id:...
DCP-Portal Multiple Script XSS
The version of DCP-Portal installed on the remote host fails to sanitize input to the script 'calendar.php' before using it to generate dynamic HTML, that could let an attacker execute arbitrary code in the browser of a legitimate user. It may also be affected by HTML injection flaws, which could...