4 matches found
JerryScript 代码问题漏洞
JerryScript is a lightweight JavaScript engine . A security vulnerability exists in JerryScript 2.4.0, which originates from a SEGV in mainprintunhandledexception in the main-utils.c file.No detailed vulnerability details are available at this time...
Snyk theme-core command injection vulnerability
Snyk theme-core is a plug-in that provides nmp packages for an application from Snyk USA. theme-core suffers from a command injection vulnerability that stems from are vulnerable to command injection via the lib utils.js file...
WordPress miniorange-saml-20-single-sign-on cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. minorange-saml-20-single-sign-on is one of the plugins used in it. A cross-site scripting vulnerability exists in the Utilities.php fi...
PT-2010-4095 · Cacti · Cacti
Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 0.8.7g Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the filter parameter in utilities.php. Recommendations: For versions...