366 matches found
DangXPloit
webOS 6.5.3 Root Exploit Chain 0-day Target: LG Smart T...
CVE-2025-41065
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
CVE-2025-41065
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
EUVD-2025-206731
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
CVE-2025-41065 Stored Cross-Site Scripting (XSS) in LUNA from Luna Imaging
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
CVE-2025-41065
Stored XSS in Luna Imaging LUNA software v7.5.5.6 allows an attacker to inject a payload via the Edit Batch Name function; the payload is stored and later rendered unsafely, enabling potential theft of session cookies or actions on behalf of users. The issue is described across multiple sources (...
CVE-2025-41065
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
CVE-2025-41065 Stored Cross-Site Scripting (XSS) in LUNA from Luna Imaging
Stored Cross-Site Scripting XSS vulnerability type in LUNA software v7.5.5.6. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by inyecting a malicious payload through the 'Edit Batch Name' function. THe payload is stored by the application and subsequently...
LUNA software 跨站脚本漏洞
LUNA software is a digital audio workstation developed by the British company LUNA. Version 7.5.5.6 of LUNA software contains a cross-site scripting vulnerability. This vulnerability stems from the improper handling of user input in the Edit Batch Name function, which may lead to storage-based...
PT-2026-5693
Name of the Vulnerable Software and Affected Versions LUNA software version 7.5.5.6 Description A stored Cross-Site Scripting XSS issue exists in LUNA software. This allows an attacker to execute JavaScript code in a victim’s browser by injecting a malicious payload through the 'Edit Batch Name'...
EUVD-2025-177571
Malicious code in node-config-pulsar-buffer-luna npm...
EUVD-2025-179631
Malicious code in commitlint-config-angular-init-miranda-luna npm...
EUVD-2025-177415
Malicious code in orbit-luna-indus-xanthus npm...
Malicious code in yakutsk-luna-nova-triton (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1247a887e7b5c2f9fd964d4f486657e8b0b2f0cb3db19d32b6971e95515ac6f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175934
Malicious code in titan-luna-luna-prompts npm...
EUVD-2025-177642
Malicious code in nestjs-luna-meteor-despina npm...
Malicious code in nestjs-luna-meteor-despina (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5dc02951e53ebfa9301168eba0b7c56d46b25e61f53253199174afa594b15df8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in luna-mira-eslint-wezen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b68370c7fb19d1cf0730a09b2a14c5c2b57ee9fa7cb0c3a9a10b30feb22bc4b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175920
Malicious code in tool-dotenv-parse-variables-gravitationalwave-luna npm...
EUVD-2025-176669
Malicious code in resonance-centaurus-luna-interstellarmedium npm...