Lucene search
K

45 matches found

RedhatCVE
RedhatCVE
added 2026/04/29 2:49 p.m.7 views

CVE-2026-39708

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uicore UiCore Elements uicore-elements allows Stored XSS.This issue affects UiCore Elements: from n/a through = 1.3.14...

6.5CVSS5.2AI score0.00133EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/14 6:30 p.m.2 views

EUVD-2026-22451

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows User Interface Core allows an authorized attacker to elevate privileges locally...

7.8CVSS5.9AI score0.00153EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/08 9:31 a.m.6 views

EUVD-2026-20415

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uicore UiCore Elements uicore-elements allows Stored XSS.This issue affects UiCore Elements: from n/a through = 1.3.14...

6.5CVSS5.9AI score0.00133EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/08 8:30 a.m.2 views

CVE-2026-39708

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uicore UiCore Elements uicore-elements allows Stored XSS.This issue affects UiCore Elements: from n/a through = 1.3.14...

6.5CVSS5.9AI score0.00133EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.5 views

PT-2026-31270

Name of the Vulnerable Software and Affected Versions UiCore Elements versions through 1.3.14 Description A Stored Cross-site Scripting XSS issue exists in UiCore Elements due to improper neutralization of input during web page generation. This allows for the injection of malicious scripts into w...

6.5CVSS5.8AI score0.00133EPSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/18 1:13 p.m.10 views

Malicious code in ui-core_mal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c66ea54316ebd799590186156adab4ff03ad3108487b4c5c48192924efcd60a The package ui-coremal was found to contain malicious code...

5.8AI score
Exploits0
OSV
OSV
added 2026/03/18 1:13 p.m.6 views

MAL-2026-1870 Malicious code in ui-core_mal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c66ea54316ebd799590186156adab4ff03ad3108487b4c5c48192924efcd60a The package ui-coremal was found to contain malicious code...

5.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/18 12:28 p.m.6 views

Malicious code in @legacy-ui/core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9cc68fa0af265da13a26ccfc943668c887b5aa3f4a73ddc7af9ab2d8498d7a0d The package @legacy-ui/core was found to contain malicious code...

5.8AI score
Exploits0
OSV
OSV
added 2026/03/18 12:28 p.m.13 views

MAL-2026-1628 Malicious code in @legacy-ui/core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9cc68fa0af265da13a26ccfc943668c887b5aa3f4a73ddc7af9ab2d8498d7a0d The package @legacy-ui/core was found to contain malicious code...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/12/30 5:5 p.m.3 views

EUVD-2025-205825

Malicious code in @ptest2535/ui-coremal npm...

6.6AI score
Exploits0References1
OSV
OSV
added 2025/12/30 5:5 p.m.2 views

MAL-2025-192982 Malicious code in @ptest2535/ui-core_mal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7628a65ea5a9b366c3df0045c4c0a1c8b44ec278dc10792f971ed266fe08ce5a The package @ptest2535/ui-coremal was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-0287

Malware in sbrugna...

7.7CVSS6.1AI score0.00627EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-30184

Malicious code in bioql PyPI...

6.6AI score
Exploits0References1
Snyk
Snyk
added 2025/09/16 3:46 a.m.2 views

Malicious Package

Overview @cnx-ui/cnx-ui-core is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/14 5:49 p.m.3 views

Malicious code in @cnx-ui/cnx-ui-core (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 87e84454809b6a23abcd234d62b4b3630bd69cf9c89b02f5e5f8c16204712981 Any computer that has this package installed or running should be considered...

7AI score
Exploits0References1
OSV
OSV
added 2025/09/14 5:49 p.m.2 views

MAL-2025-47232 Malicious code in @cnx-ui/cnx-ui-core (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 87e84454809b6a23abcd234d62b4b3630bd69cf9c89b02f5e5f8c16204712981 Any computer that has this package installed or running should be considered...

7AI score
Exploits0References1
OSV
OSV
added 2025/09/11 5:57 a.m.3 views

MAL-2025-47055 Malicious code in cornerstone_ui_core (npm)

The package cornerstoneuicore was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 76275d4480426c8c60d2ef0233c3df0f042494623872c889c0e28d2212b949fe Any computer that has this package installed or running should be considered fully...

6.9AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/08/27 12:0 a.m.4 views

PT-2025-34912 · Unknown · Uicore Elements

Name of the Vulnerable Software and Affected Versions: UiCore Elements versions through 1.3.4 Description: The software contains a Stored Cross-Site Scripting XSS issue due to improper neutralization of input during web page generation. This allows for the injection of malicious scripts into web...

6.5CVSS5.7AI score0.00154EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2025/08/14 3:30 p.m.6 views

@akitha/new-plugin (=0.0.1), @akitha/plugin-chart-hello (>=0.0.1 <=0.0.3) +245 more potentially affected by CVE-2025-55672 via @superset-ui/core (>=0.10.6 <=1.5.0)

@superset-ui/core NPM version =0.10.6, =0.0.1, =0.17.61, =0.0.0, =0.15.2, =0.0.1, =0.15.18, =0.15.18, =0.15.18, =0.15.18, =0.15.18, =0.15.18, =0.15.18, =0.15.18, =0.15.18, =1.0.5 and more Source cves: CVE-2025-55672 Source advisory: SNYK:JS-SUPERSETUICORE-11953561...

5.4CVSS5.4AI score0.00617EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 3:36 p.m.14 views

CVE-2020-5241

matestack-ui-core RubyGem before 0.7.4 is vulnerable to XSS/Script injection. This vulnerability is patched in version 0.7.4...

7.7CVSS6.9AI score0.00627EPSS
Exploits1
Rows per page
Query Builder