1613 matches found
Fedora: Security Advisory for golang-github-posener-complete (FEDORA-2022-3969b64d4b)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 35 Update: golang-github-posener-complete-1.2.3-8.fc35
Package Complete provides a tool for bash writing bash completion in go, and bash completion for the go command line. Writing bash completion scripts is a hard work. This package provides an easy way to create bash completion scripts for any command, and also an easy way to install/uninstall the...
MAL-2022-5768 Malicious code in restli-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d04a6e9f6ff9f21ef9bd2bd2b06e04147ad6aaaed595fce58c6f3649f39693d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Fedora: Security Advisory for golang-github-posener-complete (FEDORA-2022-fae3ecee19)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for golang-github-posener-complete-2 (FEDORA-2022-fae3ecee19)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 36 Update: golang-github-posener-complete-1.2.3-8.fc36
Package Complete provides a tool for bash writing bash completion in go, and bash completion for the go command line. Writing bash completion scripts is a hard work. This package provides an easy way to create bash completion scripts for any command, and also an easy way to install/uninstall the...
Malicious code in josquin-ribbon (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8e2f434f883d2a52b3a112a2c7727582a0ab8957b48c8226ab83c2b5940b69bd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5191 Malicious code in pagespeed-inslides (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ad7951a944d18efc9e4f2b2b9c2ec8eb79aa3728602ed1ef0049936b446fc8d5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-26 Malicious code in 2kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99125db96906bf9f6bf803c208fc97d34788038209a5b300028c734c146a042f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-785 Malicious code in @xvideos/tests (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 39916423d097ff70776a72d4ec09cae71c30f9e91b3d3eeb5c29b59198b581a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2117 Malicious code in comment-gagner-de-l-argent-sur-cashapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c80ca905f9355f12bcb64f4c9be237e8be4b5dab5f923bfc3d052819cb3f1f40 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-546 Malicious code in @qw-app/main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2b263b84869036075c7e82527fd72048da177b137cd4f45fa4e1ddcdcad8985b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @btu-tools/mfe-feature-toggles (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e1c049f661074e61263051b6fa7e69a238c8ec979f8c180855cadc60ac3f59dc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-4100 Malicious code in kakakaakaaa11aaa3_returns_hello_jfrog2a (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2c92d47b210c9bfa22ef3f31bdd52dcb95f729c9efa5d71587c4144a4126a3d9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in opensea-erc1155 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 57ed9708d2415ab3223ea55143304ce5afb9087aba7a655afdc96d9ad56c5102 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2022-32018
Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=hiring&search=...
CVE-2022-32014
Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=result&searchfor=byfunction...
CVE-2022-32008
Complete Online Job Search System v1.0 is vulnerable to SQL Injection via eris/admin/vacancy/index.php?view=edit&id=...
CVE-2022-32011
Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/admin/applicants/index.php?view=view&id=...
CVE-2022-32008
CVE-2022-32008 affects Complete Online Job Search System v1.0. The vulnerability is an SQL injection in eris/admin/vacancy/index.php?view=edit&id= (missing input validation). Documented across multiple sources (CNVD/CNNVD/NVD/Red Hat), indicating the input parameter can be exploited to execute ar...