Advisories for Maven/De.ipb-Halle/Molecularfaces package

2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

MolecularFaces before 0.3.0 is vulnerable to cross site scripting. A remote attacker can execute arbitrary JavaScript in the context of a victim browser via crafted molfiles.

2021

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in de.ipb-halle:molecularfaces.