CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-06-01 11:01:35 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
042db6b8e67fee4e5c4b4ff5133c36d9f277d2e0
CVEs-PoC/2016/CVE-2016-10548.md
T
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

817 B
Raw Blame History

CVE-2016-10548

Description

Arbitrary code execution is possible in reduce-css-calc node module <=1.2.4 through crafted css. This makes cross sites scripting (XSS) possible on the client and arbitrary code injection possible on the server and user input is passed to the calc function.

POC

Reference

Github

Reference in New Issue View Git Blame Copy Permalink