CVE-2022-50908

Mailhog 1.0.1 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts through email attachments. Attackers can send crafted emails with XSS payloads to execute arbitrary API calls, including message deletion and browser manipulation...

CVE-2022-50908

Mailhog 1.0.1 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts through email attachments. Attackers can send crafted emails with XSS payloads to execute arbitrary API calls, including message deletion and browser manipulation...

CVE-2022-50908 Mailhog 1.0.1 - Stored Cross-Site Scripting (XSS)

Mailhog 1.0.1 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts through email attachments. Attackers can send crafted emails with XSS payloads to execute arbitrary API calls, including message deletion and browser manipulation...

EUVD-2021-18932

Malware in sbrugna...

EUVD-2025-28212

Malicious code in bioql PyPI...

How 'Browser-in-the-Middle' Attacks Steal Sessions in Seconds

Would you expect an end user to log on to a cybercriminal's computer, open their browser, and type in their usernames and passwords? Hopefully not! But that's essentially what happens if they fall victim to a Browser-in-the-Middle BitM attack. Like Man-in-the-Middle MitM attacks, BiTM sees...

CVE-2024-5962

A reflected cross-site scripting XSS vulnerability exists in the authentication endpoint of multiple WSO2 products due to missing output encoding of user-supplied input. A malicious actor can exploit this vulnerability to inject arbitrary JavaScript into the authentication flow, potentially leadi...

CVE-2024-7103

WSO2 Identity Server 7.0.0 is affected by a reflected XSS in the sub-organization login flow caused by improper input validation. An attacker could inject arbitrary JavaScript into the login flow, potentially modifying the UI, redirecting users, or exfiltrating data from the browser. The vulnerab...

CVE-2024-52951

Stored Cross-Site Scripting in the Access Request History in Omada Identity before version 15 update 1 allows an authenticated attacker to execute arbitrary code in the browser of a victim via a specially crafted link or by viewing a manipulated Access Request History...

CVE-2024-44120

SAP NetWeaver Enterprise Portal is vulnerable to reflected cross site scripting due to insufficient encoding of user-controlled input. An unauthenticated attacker could craft a malicious URL and trick a user to click it. If the victim clicks on this crafted URL before it times out, then the...

CVE-2024-44120 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal

SAP NetWeaver Enterprise Portal is vulnerable to reflected cross site scripting due to insufficient encoding of user-controlled input. An unauthenticated attacker could craft a malicious URL and trick a user to click it. If the victim clicks on this crafted URL before it times out, then the...

MAL-2023-2322 Malicious code in tkcalenar (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 5ba8fbfa0d2b26c61267920f3ba538ff5f9318a47179c24c326d9ed2429fa45c Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1645 Malicious code in beuatifulsoup (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx f2aae4df01dc447fef3a3ab55d9c3df3fdc5dc29c533197e28b46bcfd952fdf2 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1858 Malicious code in gitppython (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 3bbc32fb329f214c3996245207fe4b25d951b3f2be6b97840b2b735d94846410 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-2037 Malicious code in pycdestyle (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 9f99198079094deec5f4f996ce8e685d3fed6381a3b7f7aa97ff1f21a7ee021c Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1985 Malicious code in progressbr2 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx fbdd97b0e8ec7e4aa4de0922968e83009b6e1abcaa6790cd62d0819588d0694a Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1825 Malicious code in erquests-toolbelt (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 0f95fba994a46f03aa338982fb6463a39ee6fb6b3b8e960f9e261a80b32390d9 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-2156 Malicious code in request-toolbelt (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx b58925db3826035ba81b1cd433254bf063a62573a90e0fdb930f42fe5e9d8272 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-1686 Malicious code in clikc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 00ba9440c19902e63d6c5f9ea6658ca57b92816833ad9bfc9867d50ad4662d48 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

MAL-2023-2304 Malicious code in tensorflw (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx bd78d1e95bbf93636a32d0ab186377ad7e7824e1be610b37260def7a0cd459ce Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...