-
## WS-2017-0118 - Medium Severity Vulnerability
Vulnerable Library - angular-v1.3.0
Path to dependency file: /rekall-gui/manuskript/static/bower.json
Path to vulnerable library: /rekall-gui/manuskr…
-
Vulnerable Library - Jinja2-3.1.3-py3-none-any.whl
A very fast and expressive template engine.
Library home page: https://files.pythonhosted.org/packages/30/6d/6de6be2d02603ab56e72997708809e8a5b0fbf…
-
Product: FAB-UI
Download: https://github.com/FABtotum/FAB-UI
Vunlerable Version: 0.986 and probably prior
Tested Version: 0.986
Author: ADLab of Venustech
Advisory Details:
Multiple Cross-Site…
-
Vulnerable Library - htmlsanitizer.5.0.355.nupkg
Cleans HTML from constructs that can be used for cross site scripting (XSS)
Library home page: https://api.nuget.org/packages/htmlsanitizer.5.0.355.n…
-
**ID:** 1111_00003.003
**Categoria:** CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
**Reportado por:** Uilton Lopes
**Projeto:** uiltonlopes/challenge…
-
Product: RETS-MD
Download: https://github.com/troydavisson/RETS-MD
Vunlerable Version: latest version
Tested Version: latest version
Author: ADLab of Venustech
Advisory Details:
Multiple Cross…
-
I have identified three security vulnerabilities in version 8.0.0. These vulnerabilities include Cross-Site Scripting (XSS), Directory Traversal in the Delete Feature, and Remote Command Execution. Al…
-
I have identified security vulnerabilities in version 3.1.1.
These vulnerabilities include Cross-Site Scripting (XSS) - both Stored and Reflected, SQL Injection, CSRF, and Server-Side Template Injec…
-
**Context**
https://github.com/whatwg/html/issues/2300 (particularly the comment thread)
https://codereview.chromium.org/2657623005
**Summary**
Let's add a new script-src keyword (`'safe-dynamic…
-
With results of the traces we should be able to determine which category of bug it is. A classifier needs to match function calls and parameters, then output appropriate Tags. e.g.
- str_replace = Fil…