Download
| Alert*
oval:org.secpod.oval:def:71229
It was discovered that missing input sanitising in the template function of the Underscore JavaScript library could result in the execution of arbitrary code. oval:org.secpod.oval:def:71592 underscore: None Underscore could be made to inject arbitrary code if it received a specially crafted input. oval:org.secpod.oval:def:120664 Underscore.js is a utility-belt library for JavaScript that provides support for the usual functional suspects without extending any core JavaScript objects. oval:org.secpod.oval:def:120666 Underscore.js is a utility-belt library for JavaScript that provides support for the usual functional suspects without extending any core JavaScript objects. oval:org.secpod.oval:def:705982 underscore: Javascripts functional programming helper library Details: USN-4913-1 fixed vulnerabilities in Underscore. This update provides the corresponding updates for Ubuntu 21.04. Original advisory Underscore could be made to inject arbitrary code if it received a specially crafted input. oval:org.secpod.oval:def:705963 underscore: None Underscore could be made to inject arbitrary code if it received a specially crafted input. oval:org.secpod.oval:def:605478 It was discovered that missing input sanitising in the template function of the Underscore JavaScript library could result in the execution of arbitrary code. |