Lucene search
K

6 matches found

Github Security Blog
Github Security Blog
added 2026/05/26 5:39 p.m.21 views

Typebot has Stored XSS via Rating Block Custom Icon that Bypasses isUnsafe Sandbox in Builder Preview

Summary The rating block's custom icon feature accepts arbitrary HTML/SVG via the customIcon.svg field and renders it using Solid's innerHTML directive without any sanitization. When a malicious typebot is imported or crafted by a workspace collaborator, the payload executes in the builder's DOM...

8.7CVSS6.1AI score0.00257EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/07 1:43 a.m.6 views

CVE-2026-28479

OpenClaw versions prior to 2026.2.15 use SHA-1 to hash sandbox identifier cache keys for Docker and browser sandbox configurations, which is deprecated and vulnerable to collision attacks. An attacker can exploit SHA-1 collisions to cause cache poisoning, allowing one sandbox configuration to be...

9.1CVSS5.7AI score0.00179EPSS
Exploits0References1
CVE
CVE
added 2026/03/05 9:59 p.m.21 views

CVE-2026-28479

OpenClaw before 2026.2.15 hashes sandbox cache keys with SHA-1, introducing collision risks that can poison cache and cause unsafe sandbox state reuse. Affected: OpenClaw versions prior to 2026.2.15. Root cause: deprecated SHA-1-based hashing of Docker/browser sandbox configuration identifiers. I...

9.1CVSS5.9AI score0.00179EPSS
Exploits0References3Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2025/08/18 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-54782

Nest is a framework for building scalable Node.js server-side applications. In versions 0.2.0 and below, a critical Remote Code Execution RCE vulnerability was discovered in the @nestjs/devtools-integration package. When enabled, the package exposes a local development HTTP server with an API...

9.4CVSS6.3AI score0.43921EPSS
In wildExploits4References125
OSV
OSV
added 2025/08/01 11:36 p.m.3 views

CVE-2025-54782 @nestjs/devtools-integration's CSRF to Sandbox Escape Allows for RCE against JS Developers

Nest is a framework for building scalable Node.js server-side applications. In versions 0.2.0 and below, a critical Remote Code Execution RCE vulnerability was discovered in the @nestjs/devtools-integration package. When enabled, the package exposes a local development HTTP server with an API...

9.4CVSS8AI score0.43921EPSS
Exploits4References7
Github Security Blog
Github Security Blog
added 2025/08/01 6:43 p.m.16 views

@nestjs/devtools-integration: CSRF to Sandbox Escape Allows for RCE against JS Developers

Summary A critical Remote Code Execution RCE vulnerability was discovered in the @nestjs/devtools-integration package. When enabled, the package exposes a local development HTTP server with an API endpoint that uses an unsafe JavaScript sandbox safe-eval-like implementation. Due to improper...

9.4CVSS8.4AI score0.43921EPSS
Exploits4References8Affected Software1
Rows per page
Query Builder