56 matches found
CVE-2026-10015
Integer overflow in WTF in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
EUVD-2025-37188
Malicious code in @ra-web-tech-ui-toolkit/common-utils npm...
EUVD-2012-5794
Malware in sbrugna...
EUVD-2007-6418
Malware in sbrugna...
EUVD-2012-4491
Malware in sbrugna...
EUVD-2007-2373
Malware in sbrugna...
EUVD-2015-5340
Malware in sbrugna...
EUVD-2020-18748
Malware in sbrugna...
EUVD-2015-5418
Malware in sbrugna...
EUVD-2022-5683
Malicious code in bioql PyPI...
MAL-2025-37607 Malicious code in uim-web-sdk (npm)
The package uim-web-sdk was found to contain malicious code...
csrf 跨站请求伪造漏洞
csrf is an open source library from Gorilla web toolkit that provides cross-site request forgery csrf prevention middleware for Go web applications and services. A cross-site request forgery vulnerability exists in csrf versions prior to 1.7.2, which stems from an unvalidated Origin header and...
Security Bulletin: A vulnerability exists in Google Web Toolkit (GWT) framework used by ITNM (CVE-2007-2378)
Summary Vulnerability CVE-2007-2378 found in gwt-maps that is present in IBM Tivoli Network Manager ITNM IP Edition. The fix contains the removal of this library from ITNM Vulnerability Details CVEID:CVE-2007-2378 DESCRIPTION: The Google Web Toolkit GWT framework exchanges data using JavaScript...
CVE-2020-26118
In SmartBear Collaborator Server through 13.3.13302, use of the Google Web Toolkit GWT API introduces a post-authentication Java deserialization vulnerability. The application's UpdateMemento class accepts a serialized Java object directly from the user without properly sanitizing it. A malicious...
Security Bulletin: Vulnerability in Gorilla Web Toolkit affects IBM watsonx.data
Summary Gorilla web toolkit schema is vulnerable to a denial of service, caused by a memory exhaustion flaw due to sparse slice deserialization. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition. This can affect...
Google Web Toolkit Detected
This is an informational notice that the scanner was able to detect an application using Google Web Toolkit. No source data...
Improper Neutralization of Input During Web Page Generation in Google Web Toolkit
Multiple cross-site scripting XSS vulnerabilities in the JUnit files in the GWTTestCase in Google Web Toolkit GWT before 2.5.1 RC1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Security Bulletin: Cross Site Scripting vulnerability in Google Web Toolkit may affect IBM Business Automation Workflow and IBM Business Process Manager (BPM) - CVE-2012-5920
Summary IBM Business Process Manager and IBM Business Automation Workflow may be vulnerable to a cross site scripting attack. Vulnerability Details CVEID: CVE-2012-5920 DESCRIPTION: Google Web Toolkit is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A...
GWTMap - Tool to help map the attack surface of Google Web Toolkit
GWTMap is a tool to help map the attack surface of Google Web Toolkit GWT based applications. The purpose of this tool is to facilitate the extraction of any service method endpoints buried within a modern GWT application's obfuscated client-side code, and attempt to generate example GWT-RPC...
AxiomSL Axiom Google Web Toolkit module security vulnerability (CNVD-2019-42884)
AxiomSL is a financial institution that provides a corporate strength platform and relevant industry expertise to address key regulatory and risk requirements. A security vulnerability exists in the AxiomSL Axiom java applet module version 9.5.3 and earlier. No detailed vulnerability details are...