Approved changes feed: RSS · Atom

cpe:2.3:a:mit:scratch-svg-renderer:0.2.0:*:*:*:*:node.js:*:*

part: a version: 0.2.0 update: *

VendorMit (82b7f5d9-694f-5ac9-86aa-26958677636b)
ProductScratch Svg Renderer (b234be14-0a52-5047-92f5-5567d94dc39e)
Edition*
Language*
Software edition*
Target softwarenode.js
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-27428 vulnerable 2026-06-08 05:23:52.706307 Details available
A DOM-based cross-site scripting (XSS) vulnerability in Scratch-Svg-Renderer v0.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted sb3 file.
Published: 2022-01-05T23:37:45.000Z
Updated: 2024-08-04T16:18:43.460Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.