Malicious code in figma-d2c-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b65db74a06749bbb141552f97e91b15d5bdd91b57a0136dfc8bfb4034b659c8f The package ships dist/report.js, a one-line module that issues an HTTPS POST to https://www.baidu.com carrying values read from process.env. The...

PanDownload suffers from SQL injection vulnerability

Pandownload is a Baidu.com download tool. PanDownload suffers from a SQL injection vulnerability, which can be exploited by an attacker to obtain sensitive database information...

Unauthorized Access Vulnerability in Baidu.com Windows Version

Baidu.com is a cloud service product. An unauthorized access vulnerability exists in the Windows version of Baidu.com. An attacker can exploit the vulnerability by restarting Baidu.com to bypass the "lock" feature...

Baidu.com PC client suffers from dll hijacking vulnerability (CNVD-2020-73296)

Baidu.com formerly Baidu Cloud is a cloud storage service launched by Baidu, which has covered the mainstream PC and cell phone operating systems, including Web version, Windows version, Mac version, Android version, iPhone version and Windows Phone version. A dll hijacking vulnerability exists i...

Baidu.com disk has dll hijacking vulnerability

Baidu.com formerly Baidu Cloud is a cloud storage service launched by Baidu, which has covered mainstream PC and cell phone operating systems. A dll hijacking vulnerability exists in Baidu.com, which can be exploited by an attacker to load an untrusted dynamic link library for command execution...

baidu.com XSS vulnerability

Open Bug Bounty ID: OBB-676380 Description| Value ---|--- Affected Website:| baidu.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

baidu.com XSS vulnerability

Vulnerable URL: http://www.baidu.com/s?wd=site:...