EUVD-2018-0783

Malware in sbrugna...

EUVD-2024-16439

Malicious code in bioql PyPI...

CVE-2024-0647

A vulnerability, which was classified as problematic, was found in Sparksuite SimpleMDE up to 1.11.2. This affects an unknown part of the component iFrame Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2024-0647

A vulnerability, which was classified as problematic, was found in Sparksuite SimpleMDE up to 1.11.2. This affects an unknown part of the component iFrame Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2024-0647

A vulnerability, which was classified as problematic, was found in Sparksuite SimpleMDE up to 1.11.2. This affects an unknown part of the component iFrame Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

Cross site scripting

A vulnerability, which was classified as problematic, was found in Sparksuite SimpleMDE up to 1.11.2. This affects an unknown part of the component iFrame Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2024-0647

CVE-2024-0647 affects Sparksuite SimpleMDE up to version 1.11.2. A flaw in the iFrame Handler component enables cross-site scripting and can be exploited remotely over the network once an attacker triggers the payload. The exploit has been disclosed publicly and is tracked under VDB-251373. No re...

CVE-2024-0647 Sparksuite SimpleMDE iFrame cross site scripting

A vulnerability, which was classified as problematic, was found in Sparksuite SimpleMDE up to 1.11.2. This affects an unknown part of the component iFrame Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2024-0647 Sparksuite SimpleMDE iFrame cross site scripting

A vulnerability, which was classified as problematic, was found in Sparksuite SimpleMDE up to 1.11.2. This affects an unknown part of the component iFrame Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

SimpleMDE Cross-Site Scripting Vulnerability

SimpleMDE is a simple, beautiful and embeddable JavaScript Markdown editor. A cross-site scripting vulnerability exists in Sparksuite SimpleMDE 1.11.2 and earlier versions, which stems from a cross-site scripting XSS vulnerability in the component iFrame Handler...

MAL-2022-6126 Malicious code in simplemde-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 299f0f7049a1ebdb35681094c9fe95541a75f001703f61a34a88b427ebf53959 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in simplemde-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 299f0f7049a1ebdb35681094c9fe95541a75f001703f61a34a88b427ebf53959 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

SimpleMDE XSS Vulnerability

SimpleMDE 1.11.2 has XSS via an onerror attribute of a crafted IMG element, or via certain input with and characters, which is mishandled during construction of an A element...

GHSA-WG85-P6J7-GP3W SimpleMDE XSS Vulnerability

SimpleMDE 1.11.2 has XSS via an onerror attribute of a crafted IMG element, or via certain input with and characters, which is mishandled during construction of an A element...

@aikiwangdake/nsg-editor-library (>=2.0.0 <=2.0.4), @becomes/cms-ui (>=2.0.0 <=2.0.51) +294 more potentially affected by CVE-2018-19057 via simplemde (=1.11.2)

simplemde NPM version =1.11.2 is affected by a known vulnerability. The following packages have a transitive dependency on simplemde and may be impacted: - @aikiwangdake/nsg-editor-library =2.0.0, =2.0.0, =0.1.0, =0.1.27, =0.2.6, =1.0.0, =1.10.0, =1.0.5, =1.0.26, =1.4.0, =1.4.4 and more Source...

CVE-2018-19057

SimpleMDE 1.11.2 has XSS via an onerror attribute of a crafted IMG element, or via certain input with and characters, which is mishandled during construction of an A element...

Design/Logic Flaw

SimpleMDE 1.11.2 has XSS via an onerror attribute of a crafted IMG element, or via certain input with and characters, which is mishandled during construction of an A element...

CVE-2018-19057

SimpleMDE 1.11.2 has XSS via an onerror attribute of a crafted IMG element, or via certain input with and characters, which is mishandled during construction of an A element...

CVE-2018-19057

CVE-2018-19057 affects SimpleMDE 1.11.2. The vulnerability is a cross-site scripting (XSS) issue triggered by an onerror attribute on a crafted IMG element, or by certain input containing [ and ( characters, which is mishandled during the construction of an A element. The issue is described acros...

CVE-2018-19057

SimpleMDE 1.11.2 has XSS via an onerror attribute of a crafted IMG element, or via certain input with and characters, which is mishandled during construction of an A element...