5 matches found
ash_authentication has email link auto-click account confirmation vulnerability
Impact The confirmation flow for account creation currently uses a GET request triggered by clicking a link sent via email. Some email clients and security tools e.g., Outlook, virus scanners, and email previewers may automatically follow these links, unintentionally confirming the account. This...
Malicious code in auto-click (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c3e16626737108a838ddff5e6db493598bf320536815289396a083e8a0a7a56a --- Credit: OpenSSF source...
MAL-2024-6726 Malicious code in auto-click (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c3e16626737108a838ddff5e6db493598bf320536815289396a083e8a0a7a56a --- Credit: OpenSSF source...
Malicious Package
Overview auto-click is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using auto-click...
Stable Channel Update for Chrome OS
The Stable channel has been updated to 32.0.1700.95 Platform version: 4920.71.0 for all Chrome OS devices except Chromebook Pixel, which is expected in the upcoming days. This build contains a number of bug fixes, security updates and feature enhancements. Systems will be receiving updates over t...