Lucene search
+L

5 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/03/05 11:9 a.m.2 views

Malicious code in @adminproxy/module-utils-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7ab70491510a9c9834ba70e271572b29b68b7cb19d3a0511123f7d1aebc2b001 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/03/05 11:9 a.m.1 views

Malicious code in @adminproxy/module-utils-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8a2cafa2022fe884b6ebbf6b805ed194ed4b93c8b77b15f7d03940e069c9137 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/03/05 11:9 a.m.3 views

Malicious code in @adminproxy/module-utils-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fbdecb9253986cff5b752fb6e685010877c7e57ebcc7c19461ac03578f80b3c2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Code423n4
Code423n4
added 2023/02/28 12:0 a.m.8 views

Upgraded Q -> 2 from #823 [1677594201547]

Judge has assessed an item in Issue 823 as 2 risk. The relevant finding follows: L-01 Low level call result not correctly checked The last adminProxy.execute is not checked for success. function deployAdapter DeploymentArgs memory adapterData, bytes memory baseAdapterData, IDeploymentController...

7AI score
Exploits0
Code423n4
Code423n4
added 2023/02/07 12:0 a.m.9 views

AdminProxy should do some extra security checks

Lines of code Vulnerability details Impact AdminProxy is the hot spot for all low-level calls, therefore it should do some extra security checks that are currently not in place. By design a Solidity low level call to a zero address or an EOA non contract address will return success true. The only...

7AI score
Exploits0
Rows per page
Query Builder