-
## CVE-2016-7103 - Medium Severity Vulnerability
Vulnerable Libraries - foxtrot0.6.1, null
Vulnerability Details
Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might…
-
```
What steps will reproduce the problem?
1. Add the following string to a URL that loads rsh.js:
#foobar'onload='alert("XSS")
What is the expected output? What do you see instead?
Expected b…
-
### Expected Behavior
Node integration should be disabled for all browser windows. Code which needs to use Node features can do so through a preload script. This isn't critical since Scratch Deskto…
-
Hi.
I would like to raise a security issue which is described in CVE-2021-3163. Is there any fix for that or do someone know an ETA when that security issue will be fixed?
Thanks in advance.
-
## CVE-2014-4075 - Low Severity Vulnerability
Vulnerable Library - razorgenerator.msbuild.2.5.0.nupkg
MsBuild tasks for RazorGenerator
Library home page: https://api.nuget.org/packages/razorgenerato…
-
### **Summary**
There is a significant Stored Cross-Site Scripting (XSS) vulnerability identified in dzzoffice 2.02.1 SC UTF8. This vulnerability allows the upload of XML files through Ueditor's uplo…
-
sonatype-2023-1010 The github.com/microsoft/go-mssqldb package is vulnerable to Buffer Overflow attacks. The readPLPType() function in the types.go file uses the size defined by an RPC message for the…
-
Vulnerable Library - jsoup-1.14.3.jar
jsoup is a Java library for working with real-world HTML. It provides a very convenient API for fetching URLs and extracting and manipulating data, using the be…
-
Hello William,
👍 Nice work! In order to learn web security, we have to learn the basics of web development. Because web development isn't the goal of this course, everyone will receive the same UI…
-
Product: ESP8266 WiFi File Manager
Download: https://github.com/breagan/ESP8266_WiFi_File_Manager
Vunlerable Version: latest version
Tested Version: latest version
Author: ADLab of Venustech
Ad…