290 matches found
Authorization Bypass
StudioCMS is vulnerable to Improper Access Control. The vulnerability is due to missing await handling for the asynchronous isAuthorized function in the S3 storage manager, where authorization checks in the POST and PUT handlers always evaluate as successful because unresolved Promise objects are...
Malicious Package
Overview chain-promised-await is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-2890 Malicious code in chai-as-ide (npm)
chai-as-ide is a malicious npm package that when imported downloads a C2 dropper from https://api.npoint.io/244f4de235f04fbcd51a and executes it similar to malware in to chai-await-test. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector...
MAL-2026-2899 Malicious code in chai-use-chains (npm)
chai-use-chains is a malicious npm package that when imported downloads a C2 dropper from https://jsonkeeper.com/b/FAWPU and executes it similar to malware in to chai-await-test. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector...
UBUNTU-CVE-2026-34001
A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering logic, specifically within the miSyncTriggerFence function. An attacker with access to the X11 server can exploit this without user interaction, leading to a server crash and potentially...
CVE-2026-34001
A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering logic, specifically within the miSyncTriggerFence function. An attacker with access to the X11 server can exploit this without user interaction, leading to a server crash and potentially...
Malicious code in chai-promised-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4af3ac4bdf4f878612b66ee0cad227e2bef184fe763ff80478fc0905107d3edb The package chai-promised-await was found to contain malicious code...
MAL-2026-1680 Malicious code in chai-promised-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4af3ac4bdf4f878612b66ee0cad227e2bef184fe763ff80478fc0905107d3edb The package chai-promised-await was found to contain malicious code...
Malicious code in chai-await-promised (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 281e36ebceca1c849a3616cd8d1b97dfbca6c5d7d779b6f30f893b053189a838 The package chai-await-promised was found to contain malicious code...
MAL-2026-1675 Malicious code in chai-await-promised (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 281e36ebceca1c849a3616cd8d1b97dfbca6c5d7d779b6f30f893b053189a838 The package chai-await-promised was found to contain malicious code...
Malicious code in chai-await-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eba2ac08d1a163026221030089df15f1e10a15be587c27714e659f4a98ec51bf The package chai-await-cli was found to contain malicious code...
MAL-2026-1674 Malicious code in chai-await-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eba2ac08d1a163026221030089df15f1e10a15be587c27714e659f4a98ec51bf The package chai-await-cli was found to contain malicious code...
Malicious code in chai-await-chain (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee42e0ab59b1093e2cb5da46d6e015073bbae0cba06eb9a0720df44e54c9c111 The package chai-await-chain was found to contain malicious code...
MAL-2026-1673 Malicious code in chai-await-chain (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee42e0ab59b1093e2cb5da46d6e015073bbae0cba06eb9a0720df44e54c9c111 The package chai-await-chain was found to contain malicious code...
GHSA-MM78-FGQ8-6PGR StudioCMS S3 Storage Manager Authorization Bypass via Missing `await` on Async Auth Check
Summary The S3 storage manager's isAuthorized function is declared async returns Promise but is called without await in both the POST and PUT handlers. Since a Promise object is always truthy in JavaScript, !isAuthorizedtype always evaluates to false, completely bypassing the authorization check...
StudioCMS S3 Storage Manager Authorization Bypass via Missing `await` on Async Auth Check
Summary The S3 storage manager's isAuthorized function is declared async returns Promise but is called without await in both the POST and PUT handlers. Since a Promise object is always truthy in JavaScript, !isAuthorizedtype always evaluates to false, completely bypassing the authorization check...
CVE-2026-32101
CVE-2026-32101 affects StudioCMS S3 Storage Manager prior to version 0.3.1. The isAuthorized() function is async but is called without await in both the POST and PUT handlers, causing the authorization check to always evaluate to bypass due to Promise objects being truthy. As a result, any authen...
CVE-2026-32101 StudioCMS S3 Storage Manager Authorization Bypass via Missing `await` on Async Auth Check
StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.3.1, the S3 storage manager's isAuthorized function is declared async returns Promise but is called without await in both the POST and PUT handlers. Since a Promise object is always truthy in...
CVE-2026-32101 StudioCMS S3 Storage Manager Authorization Bypass via Missing `await` on Async Auth Check
StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.3.1, the S3 storage manager's isAuthorized function is declared async returns Promise but is called without await in both the POST and PUT handlers. Since a Promise object is always truthy in...
CVE-2026-32101 StudioCMS S3 Storage Manager Authorization Bypass via Missing `await` on Async Auth Check
StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.3.1, the S3 storage manager's isAuthorized function is declared async returns Promise but is called without await in both the POST and PUT handlers. Since a Promise object is always truthy in...