MAL-2025-40457 Malicious code in yeoman-genrator (npm)

The package yeoman-genrator was found to contain malicious code...

CVE-2024-40457

No-IP Dynamic Update Client DUC v3.x uses cleartext credentials that may occur on a command line or in a file. NOTE: the vendor's position is that cleartext in /etc/default/noip-duc is recommended and is the intentional behavior...

CVE-2023-40457

creationtimestamp| type| source ---|---|--- 2024-11-10 23:56:49+00:00| seen| https://infosec.exchange/users/cve/statuses/113461363258758461 2024-11-11 01:52:52+00:00| seen| https://t.me/cvedetector/10445...

CVE-2024-40457

creationtimestamp| type| source ---|---|--- 2024-09-12 16:52:28+00:00| seen| https://t.me/cvedetector/5480...

CVE-2021-40457

Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting vulnerability (CVE-2021-40457) affects Microsoft Dynamics 365 Customer Engagement components; multiple sources (NVD, CNNVD, PRION, KLA) confirm XSS and potential UI spoofing aspects. Affected products include Dynamics 365 Customer En...

CVE-2021-40457 Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability

...

Clearsite 'header.php' Remote File Include Vulnerability

Clearsite is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible. OpenVAS Vulnerability Test $Id:...