Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1
CVE-2026-27210
- EPSS 0.07%
- Veröffentlicht 21.02.2026 05:24:16
- Zuletzt bearbeitet 02.03.2026 15:21:06
Pannellum is a lightweight, free, and open source panorama viewer for the web. In versions 3.5.0 through 2.5.6, the hot spot attributes configuration property allowed any attribute to be set, including HTML event handler attributes, allowing for pote...
6.1
CVE-2019-16763
- EPSS 0.69%
- Veröffentlicht 22.11.2019 19:15:12
- Zuletzt bearbeitet 21.11.2024 04:31:08
In Pannellum from 2.5.0 through 2.5.4 URLs were not sanitized for data URIs (or vbscript:), allowing for potential XSS attacks. Such an attack would require a user to click on a hot spot to execute and would require an attacker-provided configuration...
1