EUVD-2022-6642

Malicious code in bioql PyPI...

x-data-spreadsheet through 1.1.9 vulnerable to Cross-site Scripting

All versions of package x-data-spreadsheet are vulnerable to Cross-site Scripting XSS due to missing sanitization of values inserted into the cells...

@aqsc/form-making (>=0.0.22 <=0.0.39), @ariesate/are-components (=1.0.1) +75 more potentially affected by CVE-2022-25646 via x-data-spreadsheet (>=1.1.4 <=1.1.9)

x-data-spreadsheet NPM version =1.1.4, =0.0.22, =1.1.5, =0.0.1, =0.0.1, =0.0.1, =1.0.1, =1.1.6, =0.0.1, =0.0.15 - @radiscode/custom-ant-helper =1.0.28 and more Source cves: CVE-2022-25646 Source advisory: OSV:GHSA-X5CW-843F-R366...

CVE-2022-25646

All versions of package x-data-spreadsheet are vulnerable to Cross-site Scripting XSS due to missing sanitization of values inserted into the cells...

CVE-2022-25646

All versions of package x-data-spreadsheet are vulnerable to Cross-site Scripting XSS due to missing sanitization of values inserted into the cells...

CVE-2022-25646

All versions of x-data-spreadsheet are vulnerable to Cross-site Scripting (XSS) due to missing sanitization of values inserted into cells. The vulnerability enables injection and execution of malicious JavaScript in the browser when cell values are rendered. Public sources in the connected set (V...

CVE-2022-25646 Cross-site Scripting (XSS)

All versions of package x-data-spreadsheet are vulnerable to Cross-site Scripting XSS due to missing sanitization of values inserted into the cells...

CVE-2022-25646

All versions of package x-data-spreadsheet are vulnerable to Cross-site Scripting XSS due to missing sanitization of values inserted into the cells...

PT-2022-17433 · Unknown · X-Data-Spreadsheet

Name of the Vulnerable Software and Affected Versions: x-data-spreadsheet versions all Description: The issue is related to Cross-site Scripting XSS due to missing sanitization of values inserted into the cells. This allows for potential malicious script execution. Recommendations: For all...

x-data-spreadsheet 跨站脚本漏洞

x-data-spreadsheet is a web-based JavaScript canvas spreadsheet by the individual developer yuliang.liang in China. A security vulnerability exists in x-data-spreadsheet, which stems from a lack of cleanup of values in inserted cells and a cross-site scripting XSS vulnerability...

@aqsc/form-making (>=0.0.22 <=0.0.39), @ariesate/are-components (=1.0.1) +75 more potentially affected by CVE-2022-25646 via x-data-spreadsheet (>=1.1.4 <=1.1.9)

x-data-spreadsheet NPM version =1.1.4, =0.0.22, =1.1.5, =0.0.1, =0.0.1, =0.0.1, =1.0.1, =1.1.6, =0.0.1, =0.0.15 - @radiscode/custom-ant-helper =1.0.28 and more Source cves: CVE-2022-25646 Source advisory: SNYK:JS-XDATASPREADSHEET-2430381...