Malicious code in diiscord-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 236e362e04629c82c14aa65876a4f53b9c72fd61598027880b992cf11cc97fe8 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in discodr-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ca6122eb288623ada3df062fb6570a2c8dd3516234f4b93e08d9f043575e41dc Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1765 Malicious code in dicsord-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx b264faefa240a497d8ccddad4939256d3aece0cb2d944f8e785221908547ce25 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1767 Malicious code in diiscord-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 236e362e04629c82c14aa65876a4f53b9c72fd61598027880b992cf11cc97fe8 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1773 Malicious code in discodr-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ca6122eb288623ada3df062fb6570a2c8dd3516234f4b93e08d9f043575e41dc Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in discord-wwebhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 12fa892862c01493407d311ef1ca225ca4d04bc49a8ed60222972b30d535173d Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in discord-webhoo (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx fa7963a8da1102b0d2c2eae15aeecd878adb1416bc8c66b6e4a7384f16c5d32d Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in discord-webhookk (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx b81f8c03c1e3d8eedc43fe5499c84f40b3b1877036687b68b4db99081e5dd324 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1778 Malicious code in discord-ewbhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 6b69a04bbf2f10ef869eac53e93d83664e27368b803c3bec3ea73350e95440cd Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in discod-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 0d1aeb5639dbe9952810628983c55e3d3da857fdfd192c1a21c647e054d07157 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in discord-wbehook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 9bd9d4e191617640fafde125d02e0ec2748a6c9c38d6f2cdec11eada7446953b Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1782 Malicious code in discord-wbehook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 9bd9d4e191617640fafde125d02e0ec2748a6c9c38d6f2cdec11eada7446953b Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in discord-webhok (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx dfbef410f5ce07c4490dfc697613553137945d927843f043a0c969969886989f Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1761 Malicious code in ddiscord-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 586b35baf127ef658a3a98d7d7b43ef1f3df30f3f693d46f47f54fbe205e2075 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in dicord-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 524c4ae31e6f713760a6b22b600e7131acb484037391b95fe1169e9c0a64ed3c Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Leaktopus - Keep Your Source Code Under Control

Keep your source code under control. Key Features Plug &Play - one line installation with Docker. Scan various sources containing a set of keywords, e.g. ORGANIZATION-NAME.com. Currently supports: GitHub Repositories Gists coming soon Paste sites e.g., PasteBin coming soon Filter results with a...

plugin: Non-constant time webhook signature comparison in GitHub Plugin

Jenkins GitHub Plugin 1.34.4 and earlier uses a non-constant time comparison function when checking whether the provided and computed webhook signatures are equal, allowing attackers to use statistical methods to obtain a valid webhook signature...

plugin: Lack of authentication mechanism in Git Plugin webhook

The webhook endpoint in Jenkins Git Plugin 4.11.3 and earlier provide unauthenticated attackers information about the existence of jobs configured to use an attacker-specified Git repository...

GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (CVE-2022-4342)

The version of GitLab installed on the remote host is prior to 15.5.7, 15.6.4, 15.7.2. It is, therefore, affected by an information disclosure vulnerability as referenced in the SECURITY-RELEASE-GITLAB-15-7-2-RELEASED advisory. - An issue has been discovered in GitLab CE/EE affecting all versions...

CVE-2022-4255

An info leak issue was identified in all versions of GitLab EE from 13.7 prior to 15.4.6, 15.5 prior to 15.5.5, and 15.6 prior to 15.6.1 which exposes user email id through webhook payload...