RSS   Podatności dla 'Nuclide'   RSS

2018-12-31
 
CVE-2018-6333

CWE-20
 

 
The hhvm-attach deep link handler in Nuclide did not properly sanitize the provided hostname parameter when rendering. As a result, a malicious URL could be used to render HTML and other content inside of the editor's context, which could potentially be chained to lead to code execution. This issue affected Nuclide prior to v0.290.0.

 

 >>> Vendor: Facebook 26 Produkty
Messenger
Facebook
Photouploader
Facebook messenger
Suriname radio
Instaroid - instagram viewer
Hiphop virtual machine
HHVM
Proxygen
Thrift
React
BUCK
FIZZ
Wangle
Osquery
Zstandard
Facebook for woocommerce
Nuclide
Mcrouter
Folly
Instagram
Hermes
React-dev-utils
Gameroom
Mvfst
React-native


Copyright 2024, cxsecurity.com

 

Back to Top