Lucene search
K

7 matches found

vulnersOsv
vulnersOsv
added 2025/08/14 6:52 p.m.10 views

change-object (=0.0.0), cli-qa (=2.0.0) +7 more potentially affected by unknown CVE via run-serially (=0.0.0)

run-serially NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on run-serially and may be impacted: - change-object =0.0.0 - cli-qa =2.0.0 - comma-list =0.0.0 - fd-select =1.0.0 - frp-tick =1.0.0 - innkeeper =1.0.4 - limited-parallel-loop...

5.8AI score
Exploits0
vulnersOsv
vulnersOsv
added 2025/08/14 6:52 p.m.7 views

brick (=0.0.0), brick-node (>=0.0.8 <=0.0.17) +30 more potentially affected by unknown CVE via show-help (>=0.0.0 <=2.0.1)

show-help NPM version =0.0.0, =0.0.8, =0.0.0, =0.0.5, =0.0.0, =0.0.0, =0.0.7, =0.0.9, =1.1.0, =1.1.1 and more Source cves: unknown CVE Source advisory: OSV:MAL-2025-33162...

5.8AI score
Exploits0
vulnersOsv
vulnersOsv
added 2025/08/14 6:52 p.m.10 views

change-object (=0.0.0) potentially affected by unknown CVE via change-object-path (=0.0.1)

change-object-path NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on change-object-path and may be impacted: - change-object =0.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-16781...

5.8AI score
Exploits0
vulnersOsv
vulnersOsv
added 2025/08/14 6:52 p.m.16 views

brick-node (>=0.0.0 <=0.0.17), change-object (=0.0.0) +9 more potentially affected by unknown CVE via pause-function (=0.0.1)

pause-function NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on pause-function and may be impacted: - brick-node =0.0.0, =1.16.0, =0.0.0, =1.0.1 - stream-format =0.0.3 Source cves: unknown CVE Source advisory: OSV:MAL-2025-28923...

5.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.6 views

Malicious code in change-object-path (npm)

The package change-object-path was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-16781 Malicious code in change-object-path (npm)

The package change-object-path was found to contain malicious code...

7.2AI score
Exploits0
Huntr
Huntr
added 2021/09/26 6:12 a.m.10 views

Cross-Site Request Forgery (CSRF) in collectiveaccess/providence

Description I have found more endpoints which allow edit/duplicate were not protected from CSRF, the following endpoints are: 1: Edit Global Value in Pawtucket. 2: Change object type. 3: Duplicate object. 4: Duplicate items in the set and add to another set. Proof of Concept Via GET requests: 1...

0.6AI score
Exploits0
Rows per page
Query Builder