365 matches found
DangXPloit
webOS 6.5.3 Root Exploit Chain 0-day Target: LG Smart T...
CVE-2025-41065
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
CVE-2025-41065
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
CVE-2025-41065
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
CVE-2025-41065 Stored Cross-Site Scripting (XSS) in LUNA from Luna Imaging
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
CVE-2025-41065
Stored XSS in Luna Imaging LUNA software v7.5.5.6 allows an attacker to inject a payload via the Edit Batch Name function; the payload is stored and later rendered unsafely, enabling potential theft of session cookies or actions on behalf of users. The issue is described across multiple sources (...
CVE-2025-41065 Stored Cross-Site Scripting (XSS) in LUNA from Luna Imaging
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
EUVD-2025-206731
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
LUNA software 跨站脚本漏洞
LUNA software is a digital audio workstation developed by the British company LUNA. Version 7.5.5.6 of LUNA software contains a cross-site scripting vulnerability. This vulnerability stems from the improper handling of user input in the Edit Batch Name function, which may lead to storage-based...
PT-2026-5693
Name of the Vulnerable Software and Affected Versions LUNA software version 7.5.5.6 Description A stored Cross-Site Scripting XSS issue exists in LUNA software. This allows an attacker to execute JavaScript code in a victim’s browser by injecting a malicious payload through the 'Edit Batch Name'...
Malicious code in docusaurus-xml-proxima-luna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4841cb7fbba4912212b6867a9ab9667021ec18b4781ff0fe00923b7377062a5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177563
Malicious code in node-sass-luna-ora-terser-webpack-plugin npm...
EUVD-2025-178185
Malicious code in koa-betelgeuse-luna-cassini npm...
EUVD-2025-179282
Malicious code in docusaurus-xml-proxima-luna npm...
EUVD-2025-178080
Malicious code in lint-antares-luna-nashira npm...
EUVD-2025-178004
Malicious code in luna-local-optimize-css-assets-webpack-plugin-postgres npm...
EUVD-2025-179832
Malicious code in centauri-luna-cli-tethys npm...
Malicious code in yakutsk-luna-nova-triton (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1247a887e7b5c2f9fd964d4f486657e8b0b2f0cb3db19d32b6971e95515ac6f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in luna-mira-eslint-wezen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b68370c7fb19d1cf0730a09b2a14c5c2b57ee9fa7cb0c3a9a10b30feb22bc4b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177415
Malicious code in orbit-luna-indus-xanthus npm...