EUVD-2023-0540

Malicious code in bioql PyPI...

CVE-2022-25979

Versions of the package jsuites before 5.0.1 are vulnerable to Cross-site Scripting XSS due to improper user-input sanitization in the Editor function...

CVE-2021-41086

jsuites is an open source collection of common required javascript web components. In affected versions users are subject to cross site scripting XSS attacks via clipboard content. jsuites is vulnerable to DOM based XSS if the user can be tricked into copying anything from a malicious and pasting...

Security Bulletin: JSuites is vulnerable to cross-site scripting (CVE-2021-41086)

Summary CVE-2021-41086 JSuites is vulnerable to cross-site scripting Vulnerability Details CVEID:CVE-2021-41086 DESCRIPTION: jSuites is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the clipboard. A remote attacker could exploit this vulnerability to...

Cross-Site Scripting (XSS)

jsuites is vulnerable to Cross-Site Scripting XSS. The vulnerability exists due to improper sanitization of user inputs in the Editor function of jsuites.js, which allows an attacker to inject and execute arbitrary JavaScript...

@ajthinking/data-story (>=0.0.17 <=0.0.19), @alice-lib/component (>=1.0.3 <=1.0.7) +80 more potentially affected by CVE-2022-25979 via jsuites (>=2.8.0 <=4.17.7)

jsuites NPM version =2.8.0, =0.0.17, =1.0.3, =1.0.1, =4.2.3, =1.0.2, =2.1.2, =1.0.0, =1.0.0, =1.5.0, =1.0.0, =1.0.0, =1.3.3, =1.0.1, =2.1.0 and more Source cves: CVE-2022-25979 Source advisory: OSV:GHSA-R4HG-4CPQ-Q57C...

GHSA-R4HG-4CPQ-Q57C jSuites subect to Cross-site Scripting

Versions of the package jsuites before 5.0.1 are vulnerable to Cross-site Scripting XSS due to improper user-input sanitization in the Editor function...

jSuites subect to Cross-site Scripting

Versions of the package jsuites before 5.0.1 are vulnerable to Cross-site Scripting XSS due to improper user-input sanitization in the Editor function...

CVE-2022-25979

Versions of the package jsuites before 5.0.1 are vulnerable to Cross-site Scripting XSS due to improper user-input sanitization in the Editor function...

CVE-2022-25979

Versions of the package jsuites before 5.0.1 are vulnerable to Cross-site Scripting XSS due to improper user-input sanitization in the Editor function...

Cross site scripting

Versions of the package jsuites before 5.0.1 are vulnerable to Cross-site Scripting XSS due to improper user-input sanitization in the Editor function...

CVE-2022-25979

Versions of the package jsuites before 5.0.1 are vulnerable to Cross-site Scripting XSS due to improper user-input sanitization in the Editor function...

CVE-2022-25979

CVE-2022-25979 affects the jsuites package prior to 5.0.1. The vulnerability is in the Editor() function where improper user-input sanitization enables Cross-Site Scripting (XSS). Exploitation details are not provided in the connected documents, but several sources confirm XSS risk and point to v...

CVE-2022-25979

Versions of the package jsuites before 5.0.1 are vulnerable to Cross-site Scripting XSS due to improper user-input sanitization in the Editor function...

Jsuites 跨站脚本漏洞

Jsuites is a set of lightweight, commonly used javascript web components. A security vulnerability exists in Jsuites versions prior to 5.0.1, which stems from an improper sanitization of user input in its Editor function that allows an attacker to implement cross-site scripting...

Cross-site Scripting (XSS)

Overview jsuites is a jSuites is a collection of lightweight common required javascript plugins and web components. It is composed of fully responsive vanilla plugins to help you bring the best user experience to your projects, independent of the platform. Affected versions of this package are...

@ajthinking/data-story (>=0.0.17 <=0.0.19), @alice-lib/component (>=1.0.3 <=1.0.7) +80 more potentially affected by CVE-2021-41086 via jsuites (>=2.8.0 <=4.17.7)

jsuites NPM version =2.8.0, =0.0.17, =1.0.3, =1.0.1, =4.2.3, =1.0.2, =2.1.2, =1.0.0, =1.0.0, =1.5.0, =1.0.0, =1.0.0, =1.3.3, =1.0.1, =2.1.0 and more Source cves: CVE-2021-41086 Source advisory: OSV:GHSA-QH7X-J4V8-QW5W...

CVE-2021-41086

jsuites is an open source collection of common required javascript web components. In affected versions users are subject to cross site scripting XSS attacks via clipboard content. jsuites is vulnerable to DOM based XSS if the user can be tricked into copying anything from a malicious and pasting...

CVE-2021-41086

jsuites is an open source collection of common required javascript web components. In affected versions users are subject to cross site scripting XSS attacks via clipboard content. jsuites is vulnerable to DOM based XSS if the user can be tricked into copying anything from a malicious and pasting...

Cross site scripting

jsuites is an open source collection of common required javascript web components. In affected versions users are subject to cross site scripting XSS attacks via clipboard content. jsuites is vulnerable to DOM based XSS if the user can be tricked into copying anything from a malicious and pasting...