3 matches found
EUVD-2024-0918
Malicious code in bioql PyPI...
PT-2021-23080 · Elvish · Elvish
Name of the Vulnerable Software and Affected Versions: Elvish versions prior to 0.14.0 Description: Elvish is a programming language and interactive shell. The web UI backend, started by elvish -web, hosts an endpoint that allows executing code sent from the web UI. However, the backend does not...
UBUNTU-CVE-2018-20071
Insufficiently strict origin checks during JIT payment app installation in Payments in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to install a service worker for a domain that can host attacker controled files via a crafted HTML page...