8 matches found
MAL-2025-13921 Malicious code in a-vailable-al-bum-file-214683-i-love-the-new-sky-mdctg-bpldzg (npm)
The package a-vailable-al-bum-file-214683-i-love-the-new-sky-mdctg-bpldzg was found to contain malicious code...
Malicious code in a-vailable-al-bum-file-26451-e-a-9vudr-dkjlzi (npm)
The package a-vailable-al-bum-file-26451-e-a-9vudr-dkjlzi was found to contain malicious code...
MAL-2025-13917 Malicious code in a-vailable-al-bum-file-192011-from-this-place-nx95v-minwrk (npm)
The package a-vailable-al-bum-file-192011-from-this-place-nx95v-minwrk was found to contain malicious code...
MAL-2024-9323 Malicious code in a-vailable-al-bum-file-23119-street-dad-ag8vh-ijreit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 73b5276135680bddef41a18bed1c6be249d035bc781dec3eefb1284f95b284ea Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2020-7809
ALSong 3.46 and earlier version contain a Document Object Model DOM based cross-site scripting vulnerability caused by improper validation of user input. A remote attacker could exploit this vulnerability by tricking the victim to open ALSong Albumsab file...
CVE-2020-7809
ALSong 3.46 and earlier version contain a Document Object Model DOM based cross-site scripting vulnerability caused by improper validation of user input. A remote attacker could exploit this vulnerability by tricking the victim to open ALSong Albumsab file...
Cross site scripting
ALSong 3.46 and earlier version contain a Document Object Model DOM based cross-site scripting vulnerability caused by improper validation of user input. A remote attacker could exploit this vulnerability by tricking the victim to open ALSong Albumsab file...
QCMS Cross-Site Scripting Vulnerability (CNVD-2019-10280)
QCMS is an open source content management system CMS for creating responsive websites. A cross-site scripting vulnerability exists in upload/System/Controller/backend/album.php in QCMS 3.0.1, which can be exploited by remote attackers to inject arbitrary web script or HTML...