21 matches found
EUVD-2021-21462
Malware in sbrugna...
EUVD-2018-20640
Malware in sbrugna...
CVE-2021-34815
CheckSec Canopy before 3.5.2 allows XSS attacks against the login page via the LOGINPAGEDISCLAIMER parameter...
Malicious Package
Overview canopy-common-fo is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...
MAL-2023-157 Malicious code in canopy-common-fo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fd983235acbe60ea7ab43744193a666e61c5bc35a50e7332217b14925f9d557c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in canopy-common-fo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fd983235acbe60ea7ab43744193a666e61c5bc35a50e7332217b14925f9d557c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Iran's MuddyWater Hacker Group Using New Malware in Worldwide Cyber Attacks
Cybersecurity agencies from the U.K. and the U.S. have laid bare a new malware used by the Iranian government-sponsored advanced persistent threat APT group in attacks targeting government and commercial networks worldwide. "MuddyWater actors are positioned both to provide stolen data and accesse...
Canopy Parental Control App Wide Open to Unpatched XSS Bugs
Canopy, a parental control app that offers a range of features meant to protect kids online via content inspection, is vulnerable to a variety of cross-site scripting XSS attacks, according to researchers. The attacks could range from a sneaky kid disabling the monitoring to a much more serious...
Canopy Cross-Site Scripting Vulnerability
CheckSec Canopy is a team collaboration system for cyber security from CheckSec UK. The system includes features such as document management, report generation and management, and schedule management. A cross-site scripting vulnerability exists in versions of CheckSec Canopy prior to 3.5.2, which...
CVE-2021-34815
CheckSec Canopy before 3.5.2 allows XSS attacks against the login page via the LOGINPAGEDISCLAIMER parameter...
CVE-2021-34815
CheckSec Canopy before 3.5.2 allows XSS attacks against the login page via the LOGINPAGEDISCLAIMER parameter...
Cross site scripting
CheckSec Canopy before 3.5.2 allows XSS attacks against the login page via the LOGINPAGEDISCLAIMER parameter...
CVE-2021-34815
CheckSec Canopy before 3.5.2 allows XSS attacks against the login page via the LOGINPAGEDISCLAIMER parameter...
CVE-2021-34815
Summary: CVE-2021-34815 affects CheckSec Canopy prior to 3.5.2, enabling XSS on the login page through the LOGIN_PAGE_DISCLAIMER parameter. Affected product: CheckSec Canopy (team collaboration system).Vulnerability details: Cross-site scripting on the login page via a parameter controlled in the...
CheckSec Canopy 跨站脚本漏洞
CheckSec Canopy is a team collaboration system for cyber security from CheckSec UK. The system includes features such as document management, report generation and management, and schedule management. A cross-site scripting vulnerability exists in versions of CheckSec Canopy prior to 3.5.2, which...
Cross site scripting
CheckSec Canopy 3.x before 3.0.7 has stored XSS via the Login Page Disclaimer, allowing attacks by low-privileged users against higher-privileged users...
CVE-2018-9036
CheckSec Canopy 3.x before 3.0.7 has stored XSS via the Login Page Disclaimer, allowing attacks by low-privileged users against higher-privileged users...
CVE-2018-9036
CheckSec Canopy 3.x before 3.0.7 has stored XSS via the Login Page Disclaimer, allowing attacks by low-privileged users against higher-privileged users...
CVE-2018-9036
CheckSec Canopy 3.x before 3.0.7 has stored XSS via the Login Page Disclaimer, allowing attacks by low-privileged users against higher-privileged users...
CVE-2018-9036
CVE-2018-9036 affects CheckSec Canopy 3.x before 3.0.7. The vulnerability is a stored XSS via the Login Page Disclaimer, enabling attacks by low-privileged users against higher-privileged users. The public records describe the issue and its impact, but do not provide a remediation or patch versio...