Lucene search
+L

4 matches found

NVD
NVD
added 8 hours ago5 views

CVE-2026-13410

Dancer::Plugin::Auth::Google versions through 0.07 for Perl have TLS verification disabled. The default user agent is initialised with SSLverifymode explicitly disabled. An attacker with network man-in-the-middle MITM capability between the Dancer application and googleapis.com can intercept the...

8.2CVSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:17 p.m.4 views

Malicious code in bfx-facs-auth-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0b472865a206702723408d6da2983fce52eda07befe86ec726a3e94f08363879 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 8:17 p.m.14 views

MAL-2022-1515 Malicious code in bfx-facs-auth-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0b472865a206702723408d6da2983fce52eda07befe86ec726a3e94f08363879 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
vulnersOsv
vulnersOsv
added 2018/10/18 6:5 p.m.11 views

br.com.damsete.arq:damsete-arq (>=0.0.1 <=0.0.3), br.com.damsete.arq:damsete-arq-audit (>=0.0.1 <=0.0.3) +14 more potentially affected by CVE-2018-1260 via org.springframework.security.oauth:spring-security-oauth2 (>=2.3.0.RELEASE <=2.3.2.RELEASE)

org.springframework.security.oauth:spring-security-oauth2 MAVEN version =2.3.0.RELEASE, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =2.0.1, =4.0.0, =0.1.0, =4.26.0, =4.26.0, =3.3.0.6, =4.30.0 and more Source cves: CVE-2018-1260 Source advisory: OSV:GHSA-RRPM-PJ7P-7J9Q...

9.8CVSS7.2AI score0.08247EPSS
Exploits2
Rows per page
Query Builder