Количество 2
Количество 2
CVE-2022-0748
почти 4 года назад
The package post-loader from 0.0.0 are vulnerable to Arbitrary Code Execution which uses a markdown parser in an unsafe way so that any javascript code inside the markdown input files gets evaluated and executed.
CVSS3: 9.8
EPSS: Низкий
GHSA-66ww-999q-mffq
почти 4 года назад
Arbitrary code execution in post-loader
CVSS3: 9.8
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-0748 The package post-loader from 0.0.0 are vulnerable to Arbitrary Code Execution which uses a markdown parser in an unsafe way so that any javascript code inside the markdown input files gets evaluated and executed. | CVSS3: 9.8 | 1% Низкий | почти 4 года назад |
| GHSA-66ww-999q-mffq Arbitrary code execution in post-loader | CVSS3: 9.8 | 1% Низкий | почти 4 года назад |
Уязвимостей на страницу
20