2 matches found
[SECURITY] [DLA 4543-1] simpleeval security update
Debian LTS Advisory DLA-4543-1 [email protected] https://www.debian.org/lts/security/ Santiago Ruano Rincón April 21, 2026 https://wiki.debian.org/LTS Package : simpleeval Version : 0.9.10-1+deb11u1 CVE ID : CVE-2026-32640 Debian Bug : 1130875 Byambadalai Sumiya discovered that...
XML Injection
Overview @xmldom/xmldom is a javascript ponyfill to provide the following APIs that are present in modern browsers to other runtimes. Since version 0.7.0 this package is published to npm as @xmldom/xmldom and no longer as xmldom Affected versions of this package are vulnerable to XML Injection du...