GCVE - cpe:2.3:a:alvarotrigo:alvarotrigo/fullpage.js:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:alvarotrigo:alvarotrigo/fullpage.js:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Alvarotrigo (`29cd1dd5-7035-5dcd-b8cb-b5326a1dc7e1`)
Product	Alvarotrigo/Fullpage.Js (`1af7e1ac-7d6d-58fe-b340-79b71d676d28`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-1330`	vulnerable	2026-06-08 05:39:12.748050	stored xss due to unsantized anchor url in alvarotrigo/fullpage.js CRITICAL (9.4) stored xss due to unsantized anchor url in GitHub repository alvarotrigo/fullpage.js prior to 4.0.4. stored xss . Published: 2022-04-12T20:40:10.000Z Updated: 2024-08-03T00:03:05.700Z Open on db.gcve.eu Reference links https://huntr.dev/bounties/08d2a6d0-772f-4b05-834e-86343f263c35 https://github.com/alvarotrigo/fullpage.js/commit/e7a5db42711700c8a584e61b5e532a64039fe92b	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-1295`	vulnerable	2026-06-08 05:39:12.691176	Prototype Pollution in alvarotrigo/fullpage.js HIGH (7.3) Prototype Pollution in GitHub repository alvarotrigo/fullpage.js prior to 4.0.2. Published: 2022-04-11T11:20:13.000Z Updated: 2024-08-02T23:55:24.630Z Open on db.gcve.eu Reference links https://huntr.dev/bounties/3b9d450c-24ac-4037-b04d-4d4dafbf593a https://github.com/alvarotrigo/fullpage.js/commit/bf62492a22e5d296e63c3ed918a42fc5645a0d48	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.