Malicious code in gog-module-event-bus (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4fb2c212daa3b898b2df5ffdf458a7751515e92268bd6b3b13ac45894235be3c The OpenSSF Package Analysis project identified 'gog-module-event-bus' @ 1.0.1 npm as malicious. It is considered malicious because: - The packa...

CVE-2019-13623

In NSA Ghidra before 9.1, path traversal can occur in RestoreTask.java from the package ghidra.app.plugin.core.archive via an archive with an executable file that has an initial ../ in its filename. This allows attackers to overwrite arbitrary files in scenarios where an intermediate analysis...