EUVD-2024-1640

Malicious code in bioql PyPI...

CVE-2023-49781

NocoDB CVE-2023-49781 is a stored XSS vulnerability in the Formula.vue component used for Formula virtual cells. The issue arises because v-html renders the urls content after processing by replaceUrlsWithLink(), where URI::(XXX) is converted into an tag, while content outside the URI pattern re...

CVE-2023-49781 NocoDB Vulnerable to Stored Cross-Site Scripting in Formula.vue

NocoDB is software for building databases as spreadsheets. Prior to 0.202.9, a stored cross-site scripting vulnerability exists within the Formula virtual cell comments functionality. The nc-gui/components/virtual-cell/Formula.vue displays a v-html tag with the value of "urls" whose contents are...

PT-2024-13799 · Nocodb · Nocodb

Name of the Vulnerable Software and Affected Versions: NocoDB versions prior to 0.202.9 Description: A stored cross-site scripting vulnerability exists within the Formula virtual cell comments functionality. The nc-gui/components/virtual-cell/Formula.vue displays a v-html tag with the value of ur...