9 matches found
EUVD-2022-0793
Malicious code in bioql PyPI...
CVE-2024-21548
Versions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability through Bun's APIs that accept objects. Note: This issue relates to the widely known and actively developed 'Bun'...
BIT-DRUPAL-2020-13672
Cross-site Scripting XSS vulnerability in Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. This issue affects: Drupal Core 9.1.x versions prior to 9.1.7; 9.0.x versions prior to 9.0.12; 8.9.x versions prior to 8.9.14; 7.x versions prior to...
GHSA-3M36-MJWJ-352C Drupal core Cross-site Scripting (XSS) vulnerability
Cross-site Scripting XSS vulnerability in Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. This issue affects: Drupal Core 9.1.x versions prior to 9.1.7; 9.0.x versions prior to 9.0.12; 8.9.x versions prior to 8.9.14; 7.x versions prior to...
UBUNTU-CVE-2020-13672
Cross-site Scripting XSS vulnerability in Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. This issue affects: Drupal Core 9.1.x versions prior to 9.1.7; 9.0.x versions prior to 9.0.12; 8.9.x versions prior to 8.9.14; 7.x versions prior to...
CVE-2020-13672
Cross-site Scripting XSS vulnerability in Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. This issue affects: Drupal Core 9.1.x versions prior to 9.1.7; 9.0.x versions prior to 9.0.12; 8.9.x versions prior to 8.9.14; 7.x versions prior to...
CVE-2020-13672
CVE-2020-13672 is a Drupal core Cross-site Scripting (XSS) issue in the sanitization API. The exposure affects Drupal Core versions: 9.1.x before 9.1.7; 9.0.x before 9.0.12; 8.9.x before 8.9.14; and 7.x before 7.80. The root cause is insufficient filtering of certain scripts during sanitization, ...
Drupal跨站脚本漏洞
Drupal is an open source content management system developed by the Drupal community using the PHP language. A cross-site scripting vulnerability exists in Drupal, which stems from the product's Drupal cores sanitization API not effectively filtering certain cross-site scripts. The vulnerability...
Drupal 7.x < 7.80 / 8.9.x < 8.9.14 / 9.x < 9.0.12 / 9.1.x < 9.1.7 XSS (SA-CORE-2021-002)
According to its self-reported version, the instance of Drupal running on the remote web server is 7.x prior to 7.80, 8.9.x prior to 8.9.14, 9.x prior to 9.0.12, or 9.1.x prior to 9.1.7. It is, therefore, affected by a vulnerability. - Drupal core's sanitization API fails to properly filter...