to slate a suggestion for refinement.
to mark a suggestion as irrelevant and log the reason.
User-controlled header names and values containing newlines can allow injecting HTTP headers.
Bindings for libpython
User-controlled data URLs parsed by urllib.request.DataHandler allow injecting headers through newlines in the data URL mediatype.
Bindings for libpython
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in mmetrodw tPlayer tplayer-html5-audio-player-with-playlist allows SQL Injection.This issue affects tPlayer: from n/a through <= 1.2.1.6.
Local audio player and network m3u8 radio player using a terminal interface
Inappropriate implementation in Blink in Google Chrome on Android prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: High)
Open Netflix in Google Chrome app mode
WebDriver server for running Selenium tests on Chrome
Cast macOS and Linux Audio/Video to your Google Cast and Sonos Devices
Scripts to save Google Chrome's bookmarks and history as HTML bookmarks files
CLI for Google Chromecast, Home devices and Cast Groups
Freeware web browser developed by Google
Chrome and Firefox extension for signing with your eID on the web
Simple batch tool to customize pak files in chrome or chromium-based browser
Special build of curl that can impersonate Chrome & Firefox
Custom Selenium ChromeDriver that passes all bot mitigation systems
None
None
None
WebDriver server for running Selenium tests on Chrome
WebDriver server for running Selenium tests on Chrome
WebDriver server for running Selenium tests on Chrome
WebDriver server for running Selenium tests on Chrome
None
Chrome trace event generation library
Monochrome emoji font
Library for Python to communicate with the Google Chromecast
Library for Python to communicate with the Google Chromecast
Python library for the custom Selenium ChromeDriver that passes all bot mitigation systems
Python library for the custom Selenium ChromeDriver that passes all bot mitigation systems
Grafana plugin to display air conditions on a psychrometric chart
An out-of-bounds write vulnerability exists in the Grassroots DICOM library (GDCM). The issue is triggered during parsing of a malformed DICOM file containing encapsulated PixelData fragments (compressed image data stored as multiple fragments). This vulnerability leads to a segmentation fault caused by an out-of-bounds memory access due to unsigned integer underflow in buffer indexing. It is exploitable via file input, simply opening a crafted malicious DICOM file is sufficient to trigger the crash, resulting in a denial-of-service condition.
Simplified interface to ITK
Simplified interface to ITK
Simplified interface to ITK
Simplified interface to ITK
Simplified interface to ITK
The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.
Bindings for libpython
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Igor Benic Pets pets allows Reflected XSS.This issue affects Pets: from n/a through <= 1.4.1.
Portable Extensible Toolkit for Scientific computation
Collection of small bash scripts for heavy terminal users
Snippets solution for coc.nvim
Portable Extensible Toolkit for Scientific computation
Collection of Idris snippets
Snippets solution for coc.nvim
None
Portable Extensible Toolkit for Scientific computation
Portable Extensible Toolkit for Scientific computation
Pythonic extensions for petsc4py and slepc4py
Pythonic extensions for petsc4py and slepc4py
None
Portable Extensible Toolkit for Scientific computation
Code snippets for C/C++
Automatically inline Haskell snippets into LaTeX documents
Pythonic extensions for petsc4py and slepc4py
Set of helpful widget snippets for day to day Flutter development
VSCode extension for Elixir EEx and HTML (EEx) code snippets
Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559.59 allowed an attack who obtained a network log file to potentially obtain potentially sensitive information via a network log file. (Chromium security severity: Medium)
Open Netflix in Google Chrome app mode
WebDriver server for running Selenium tests on Chrome
Cast macOS and Linux Audio/Video to your Google Cast and Sonos Devices
Scripts to save Google Chrome's bookmarks and history as HTML bookmarks files
CLI for Google Chromecast, Home devices and Cast Groups
Freeware web browser developed by Google
Chrome and Firefox extension for signing with your eID on the web
Simple batch tool to customize pak files in chrome or chromium-based browser
Special build of curl that can impersonate Chrome & Firefox
Custom Selenium ChromeDriver that passes all bot mitigation systems
None
None
None
WebDriver server for running Selenium tests on Chrome
WebDriver server for running Selenium tests on Chrome
WebDriver server for running Selenium tests on Chrome
WebDriver server for running Selenium tests on Chrome
None
Chrome trace event generation library
Monochrome emoji font
Library for Python to communicate with the Google Chromecast
Library for Python to communicate with the Google Chromecast
Python library for the custom Selenium ChromeDriver that passes all bot mitigation systems
Python library for the custom Selenium ChromeDriver that passes all bot mitigation systems
Grafana plugin to display air conditions on a psychrometric chart
Stored Cross-Site Scripting (XSS) vulnerability in Sesame web application, due to the fact that uploaded SVG images are not properly sanitized. This allows attackers to embed malicious scripts in SVG files by sending a POST request using the 'logo' parameter in '/api/v3/companies/<ID>/logo', which are then stored on the server and executed in the context of any user who accesses the compromised resource.
Python API for Sesame Smartlock made by CANDY HOUSE
Python API for Sesame Smartlock made by CANDY HOUSE
URLs with authentication tokens for automatic login
URLs with authentication tokens for automatic login
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AncoraThemes Echo echo allows PHP Local File Inclusion.This issue affects Echo: from n/a through <= 1.15.0.
IP address lookup service
Accepts TCP connections and echoes the client's IP address back to it
Vulkan layer to force a specific device to be used
A cross-platform, cross-console way to handle echoing terminal input
Callback Properties in Python
Callback Properties in Python
None
Debug plugin for LLM
Debug plugin for LLM
Simple Python package for colorized terminal output
Simple Python package for colorized terminal output
xdg-desktop-portal backend for choosing files with your favorite file chooser
Nixpkgs security tracker