Malicious code in ciao-webui (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-41541 Malicious code in ciao-webui (npm)

--- -= Per source details. Do not edit below this line.=-...

ciao-tree.ru Cross Site Scripting vulnerability OBB-3897208

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Charming Kitten's New BellaCiao Malware Discovered in Multi-Country Attacks

The prolific Iranian nation-state group known as Charming Kitten is actively targeting multiple victims in the U.S., Europe, the Middle East and India with a novel malware dubbed BellaCiao , adding to its ever-expanding list of custom tools. Discovered by Bitdefender Labs, BellaCiao is a...

io.fabric8.funktion.connector:connector-ldap (>=1.1.9 <=1.1.55), org.apache.camel.kafkaconnector:camel-ldap-kafka-connector (>=0.10.1 <=0.11.5) +10 more potentially affected by CVE-2022-45046 via org.apache.camel:camel-ldap (>=2.13.4 <=3.14.5)

org.apache.camel:camel-ldap MAVEN version =2.13.4, =1.1.9, =0.10.1, =2.3.0, =2.0.0, =2.0.0, =2.0.0, =3.0.0, =2.18.0, =4.4.354, =4.4.366 - org.wildfly.camel:wildfly-camel-itests-camel =11.0.0 - uk.nhs.ciao:ciao-spine-sds =0.1 - uk.nhs.ciao:ciao-transport-spine =0.1 Source cves: CVE-2022-45046 Sour...

ciao-guide.com XSS vulnerability

Open Bug Bounty ID: OBB-714792 Description| Value ---|--- Affected Website:| ciao-guide.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...

ciao-shopping.nl XSS vulnerability

Open Bug Bounty ID: OBB-76159 Description| Value ---|--- Affected Website:| ciao-shopping.nl Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

Unfixed XSS vulnerability at www.ciao-surveys.se

Security researcher Uber0n, has submitted on 11/05/2008 a cross-site-scripting XSS vulnerability affecting www.ciao-surveys.se, which at the time of submission ranked 1397146 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/05/2008. It is...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in F@cile Interactive Web 0.8.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 lang parameter in index.php, and the 2 mytheme and 3 myskin parameters in multiple "p-themes" index.inc.php files including c...

CYBSEC - PHPMailer Infinite Loop Denial of Service

CYBSEC S.A. www.cybsec.com Advisory Name: PHPMailer Infinite Loop Denial of Service ============== Vulnerability Class: Denial of Service ==================== Release Date: 05.27.2005 ============= Affected Applications: ====================== PHPMailer = 1.72 Affected Platforms:...