3 matches found
CVE-2026-2404
CWE-116 Improper Encoding or Escaping of Output vulnerability exists that could cause log injection and forged log when an attacker alters the POST /jsecurity check request payload...
PT-2026-32676
Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Improper encoding or escaping of output allows an attacker to perform log injection and forge logs by altering the payload of the 'POST /j security check' reques...
Malicious code in wawan-wajit52-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de24c84ab10c7dc491f3e682a0e19597002daa9362bdaefd3dce59c626b28986 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...