Malicious code in mdp-client-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bae22cc58ac4c2a2b449514ef62c82fde3dd2d6d0d5697b3689f16c8583e62b The package mdp-client-web was found to contain malicious code. Source: ghsa-malware 070c26f2080c516dd8c197674dcc76a911d4dfb62242027e1d50a04c4536f0b2...

MAL-2026-744 Malicious code in mdp-client-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bae22cc58ac4c2a2b449514ef62c82fde3dd2d6d0d5697b3689f16c8583e62b The package mdp-client-web was found to contain malicious code. Source: ghsa-malware 070c26f2080c516dd8c197674dcc76a911d4dfb62242027e1d50a04c4536f0b2...

Malicious Package

Overview mdp-client-web is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious Package

Overview mona-client-web is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

EUVD-2005-3910

Malware in sbrugna...

EUVD-2022-27984

Malicious code in bioql PyPI...

@dwimm/client-web (>=0.0.1 <=0.0.2-86), @element-hq/web-shared-components (>=0.0.0-test.6 <=0.0.2) +26 more potentially affected by CVE-2025-57354 via counterpart (>=0.16.10 <=0.18.6)

counterpart NPM version =0.16.10, =0.0.1, =0.0.0-test.6, =1.0.0, =2.10.1, =0.0.1, =0.7.1, =0.0.1, =0.1.8, =2.3.0, =3.114.0-rc.0 and more Source cves: CVE-2025-57354 Source advisory: SNYK:JS-COUNTERPART-13110034...

Malicious code in mona-client-web (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-11392 Malicious code in mona-client-web (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in @bytedanc/mona-client-web (npm)

--- -= Per source details. Do not edit below this line.=-...

K000148606: Spring vulnerability CVE-2021-22119

Security Advisory Description Spring Security versions 5.5.x prior to 5.5.1, 5.4.x prior to 5.4.7, 5.3.x prior to 5.3.10 and 5.2.x prior to 5.2.11 are susceptible to a Denial-of-Service DoS attack via the initiation of the Authorization Request in an OAuth 2.0 Client Web and WebFlux application. ...

OpenVPN Server Client Web Server Detection

The remote host is running an OpenVPN Client Web Server. %NASLMINLEVEL 80900 C Tenable Network Security, Inc. include"compat.inc"; if description scriptid191048; scriptversion"1.1"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/04/10"; scriptnameenglish:"OpenVPN Server Client...

EcoStruxure Geo SCADA Expert 信任管理问题漏洞

EcoStruxure Geo SCADA Expert is an integrated, scalable, and reliable surveillance and data acquisition SCADA software A trust management issue vulnerability exists in EcoStruxure Geo SCADA Expert, which stems from a possible man-in-the-middle attack when communication between a client and the Ge...

CVE-2022-22847

Formpipe Lasernet before 9.13.3 allows file inclusion in Client Web Services either by an authenticated attacker, or in a configuration that does not require authentication...

CVE-2022-22847

Formpipe Lasernet before 9.13.3 allows file inclusion in Client Web Services either by an authenticated attacker, or in a configuration that does not require authentication...

Authentication flaw

Formpipe Lasernet before 9.13.3 allows file inclusion in Client Web Services either by an authenticated attacker, or in a configuration that does not require authentication...

CVE-2022-22847

CVE-2022-22847 affects Formpipe Lasernet before 9.13.3, enabling file inclusion in Client Web Services. Exploitation could occur with authentication or in configurations that do not require authentication. CVSS metrics indicate high impact (C/I/A: partial to high) with network attack vector and v...

Formpipe Lasernet 安全漏洞

Formpipe Lasernet is a document processing solution from the Danish company Formpipe. A security vulnerability exists in versions of Formpipe Lasernet prior to 9.13.3 that allows documents to be included in a client web service either through an authenticated attacker, or in a configuration that...

Resource Exhaustion in Spring Security

Spring Security versions 5.5.x prior to 5.5.1, 5.4.x prior to 5.4.7, 5.3.x prior to 5.3.10 and 5.2.x prior to 5.2.11 are susceptible to a Denial-of-Service DoS attack via the initiation of the Authorization Request in an OAuth 2.0 Client Web and WebFlux application. A malicious user or attacker c...

Authorization

Spring Security versions 5.5.x prior to 5.5.1, 5.4.x prior to 5.4.7, 5.3.x prior to 5.3.10 and 5.2.x prior to 5.2.11 are susceptible to a Denial-of-Service DoS attack via the initiation of the Authorization Request in an OAuth 2.0 Client Web and WebFlux application. A malicious user or attacker c...