48 matches found
PT-2026-42841
Name of the Vulnerable Software and Affected Versions Microsoft Azure Active Directory B2C affected versions not specified Description An authentication bypass exists via an alternate path or channel, which allows an unauthorized attacker to elevate privileges over a network. Recommendations At t...
Malicious Package
Overview kl-b2c-ui-kit is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in kl-b2c-ui-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e32dd1450d1b5670388a4fbf71a7189cff326aa1c7734ee6ea1c89614438c516 The package kl-b2c-ui-kit was found to contain malicious code. Source: ghsa-malware c42673f7cabe65ad288149a7f75426fea7054327c8f73ac59d07e6b60a64b3db...
MAL-2026-3082 Malicious code in kl-b2c-ui-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e32dd1450d1b5670388a4fbf71a7189cff326aa1c7734ee6ea1c89614438c516 The package kl-b2c-ui-kit was found to contain malicious code. Source: ghsa-malware c42673f7cabe65ad288149a7f75426fea7054327c8f73ac59d07e6b60a64b3db...
EUVD-2024-19093
Malicious code in bioql PyPI...
CVE-2025-32016 Microsoft Identity Web Exposes Client Secrets and Certificate Information in Service Logs
Microsoft Identity Web is a library which contains a set of reusable classes used in conjunction with ASP.NET Core for integrating with the Microsoft identity platform formerly Azure AD v2.0 endpoint and AAD B2C. This vulnerability affects confidential client applications, including daemons, web...
Chameleon Android Banking Trojan Targets Users Through Fake CRM App
Cybersecurity researchers have lifted the lid on a new technique adopted by threat actors behind the Chameleon Android banking trojan targeting users in Canada by masquerading as a Customer Relationship Management CRM app. "Chameleon was seen masquerading as a CRM app, targeting a Canadian...
CVE-2024-40425
File Upload vulnerability in Nanjin Xingyuantu Technology Co Sparkshop Spark Mall B2C Mall v.1.1.6 and before allows a remote attacker to execute arbitrary code via the contorller/common.php component...
CVE-2024-40425
File Upload vulnerability in Nanjin Xingyuantu Technology Co Sparkshop Spark Mall B2C Mall v.1.1.6 and before allows a remote attacker to execute arbitrary code via the contorller/common.php component...
CVE-2024-40425
File Upload vulnerability in Nanjin Xingyuantu Technology Co Sparkshop Spark Mall B2C Mall v.1.1.6 and before allows a remote attacker to execute arbitrary code via the contorller/common.php component...
CVE-2024-21381
Microsoft Azure Active Directory B2C Spoofing Vulnerability...
Spoofing
Microsoft Azure Active Directory B2C Spoofing Vulnerability...
CVE-2024-21381
The connected source (NCSC advisory) confirms CVE-2024-21381 affects Microsoft Azure Active Directory B2C and is categorized as a spoofing vulnerability with the practical impact described as “Pretend to be another user.” The advisory lists it under Azure Active Directory vulnerabilities with a C...
CVE-2024-21381 Microsoft Azure Active Directory B2C Spoofing Vulnerability
...
CVE-2024-21381 Microsoft Azure Active Directory B2C Spoofing Vulnerability
...
Worried About Bot Attacks on B2C APIs? You May Be Missing a Bigger Risk
...
How Technology Can Help Your Business Succeed
By Owais Sultan The B2B world is known as the bland counterpart of B2C, and this is because of the two… This is a post from HackRead.com Read the original post: How Technology Can Help Your Business Succeed...
WordPress Wholesale For WooCommerce Lite – B2B & B2C Solution plugin <= 1.6.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Wholesale For WooCommerce Lite – B2B & B2C Solution plugin versions = 1.6.0. Solution Update the WordPress Wholesale For WooCommerce Lite – B2B & B2C Solution plugin to the latest available version at...
MVP Health Care secures member portal access with Microsoft Azure Active Directory B2C
Hello! I’m Sue Bohn, Microsoft Vice President of Program Management for Identity and Network Access. In today’s Voice of the Customer blog post, Chief Technology Officer and Chief Information Security Officer David Swits of MVP Health Care shares how Microsoft Azure Active Directory B2C helped th...
MVP Health Care secures member portal access with Microsoft Azure Active Directory B2C
Hello! I’m Sue Bohn, Microsoft Vice President of Program Management for Identity and Network Access. In today’s Voice of the Customer blog post, Chief Technology Officer and Chief Information Security Officer David Swits of MVP Health Care shares how Microsoft Azure Active Directory B2C helped th...