22 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-33347
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - league/commonmark is a PHP Markdown parser. From version 2.3.0 to before version 2.8.2, the DomainFilteringAdapter in the Embed extension is vulnerable to an...
EUVD-2019-0649
Malware in sbrugna...
EUVD-2022-5057
Malicious code in bioql PyPI...
CVE-2018-20583
Cross-site scripting XSS vulnerability in the PHP League CommonMark library versions 0.15.6 through 0.18.x before 0.18.1 allows remote attackers to insert unsafe URLs into HTML even if allowunsafelinks is false via a newline character e.g., writing javascript as javascri%0apt...
CVE-2019-10010
Cross-site scripting XSS vulnerability in the PHP League CommonMark library before 0.18.3 allows remote attackers to insert unsafe links into HTML by using double-encoded HTML entities that are not properly escaped during rendering, a different vulnerability than CVE-2018-20583...
GHSA-QX76-C53F-5C7Q PHP League CommonMark vulnerable to Cross-Site Scripting (XSS)
Cross-site scripting XSS vulnerability in the PHP League CommonMark library versions 0.15.6 through 0.18.x before 0.18.1 allows remote attackers to insert unsafe URLs into HTML even if allowunsafelinks is false via a newline character e.g., writing javascript as javascri%0apt...
Fedora: Security Advisory for php-league-flysystem (FEDORA-2021-b9187c535c)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for php-league-flysystem (FEDORA-2021-717516a2e9)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 33 Update: php-league-flysystem-1.1.4-1.fc33
Flysystem is a filesystem abstraction which allows you to easily swap out a local filesystem for a remote one. Autoloader: /usr/share/php/League/Flysystem/autoload.php...
PHP League CommonMark library cross-site scripting vulnerability
PHP League CommonMark library is a PHP-based Markdown parser from the Extraordinary Packages consortium. A cross-site scripting vulnerability exists in PHP League CommonMark library versions prior to 0.18.3, which stems from the program failing to properly escape double-encoded HTML entities. A...
CVE-2019-10010
Cross-site scripting XSS vulnerability in the PHP League CommonMark library before 0.18.3 allows remote attackers to insert unsafe links into HTML by using double-encoded HTML entities that are not properly escaped during rendering, a different vulnerability than CVE-2018-20583...
commonmark cross-site scripting vulnerability
PHP League CommonMark library is a PHP-based Markdown parser. A cross-site scripting vulnerability exists in PHP League CommonMark library versions 0.15.6 through 0.18.1 and earlier. A remote attacker can exploit this vulnerability by injecting insecure URLs into HTML using line breaks...
CVE-2018-20583
Cross-site scripting XSS vulnerability in the PHP League CommonMark library versions 0.15.6 through 0.18.x before 0.18.1 allows remote attackers to insert unsafe URLs into HTML even if allowunsafelinks is false via a newline character e.g., writing javascript as javascri%0apt...
Cross site scripting
Cross-site scripting XSS vulnerability in the PHP League CommonMark library versions 0.15.6 through 0.18.x before 0.18.1 allows remote attackers to insert unsafe URLs into HTML even if allowunsafelinks is false via a newline character e.g., writing javascript as javascri%0apt...
CVE-2018-20583
Cross-site scripting XSS vulnerability in the PHP League CommonMark library versions 0.15.6 through 0.18.x before 0.18.1 allows remote attackers to insert unsafe URLs into HTML even if allowunsafelinks is false via a newline character e.g., writing javascript as javascri%0apt...
CVE-2018-20583
Cross-site scripting XSS vulnerability in the PHP League CommonMark library versions 0.15.6 through 0.18.x before 0.18.1 allows remote attackers to insert unsafe URLs into HTML even if allowunsafelinks is false via a newline character e.g., writing javascript as javascri%0apt...
Php League 0.82 (classement.php) Remote SQL Injection Exploit
No description provided by source. % Response.Buffer = True % % On Error Resume Next % % Server.ScriptTimeout = 100 % % '=============================================================================================== 'Script Name: Php League v0.82 classement.php Remote SQL Injection Exploit 'Code...
PHP League 0.82 - 'classement.php' SQL Injection
exploit2.asp 'Note : If Wrong Id = "CTYPE html PUBLIC..... see" 'Using : Write Target and ID after Submit Click '=============================================================================================== % Php League v0.82 classement.php Remote SQL Injection Exploit function functionControl1...
Php League 0.82 (classement.php) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications ============================================================= Php League 0.82 classement.php Remote SQL Injection Exploit ============================================================= exploit2.asp 'Note : If Wrong Id = "CTYPE html...
Php League <= 0.81 (config.php) Remote File Include Exploit
No description provided by source. html head meta http-equiv="Content-Type" content="text/html; charset=windows-1254" titlePhpLeague 0.81 Remote File Include Exploit/title script language="JavaScript" //'=============================================================================================...