All disclosed vulnerabilities by Snyk

• • M

  Cross-site Scripting (XSS) in whoogle-search (pip)

  Discovered by Alessio Della Libera of Snyk Security Team
  27 Apr 2022
• • M

  Cross-site Scripting (XSS) in s-cart/core (composer)

  Discovered by Faisal Fs
  26 Apr 2022
• • M

  Cross-site Scripting (XSS) in s-cart/s-cart (composer)

  Discovered by Faisal Fs
  26 Apr 2022
• • H

  Command Injection in czproject/git-php (composer)

  Discovered by Alessio Della Libera of Snyk Research Team
  25 Apr 2022
• • M

  Cross-site Scripting (XSS) in @yaireo/tagify (npm)

  Discovered by Roman Rott
  24 Apr 2022
• • C

  Command Injection in git-interface (npm)

  Discovered by Liran Tal of Snyk
  22 Apr 2022
• • M

  Arbitrary File Write via Archive Extraction (Zip Slip) in com.alibaba.oneagent:one-java-agent-plugin (maven)

  Discovered by Akhil Jain
  21 Apr 2022
• • M

  Regular Expression Denial of Service (ReDoS) in angular (npm)

  Discovered by Michael Prentice
  21 Apr 2022
• • H

  Command Injection in git (rubygems)

  Discovered by Alessio Della Libera of Snyk Research Team
  19 Apr 2022
• • M

  Cross-site Scripting (XSS) in materialize-css (npm)

  Discovered by Paul Wheeler
  18 Apr 2022