15467 matches found
CVE-2025-4763 XSS in Aida Computer's Hotspot
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Aida Computer Information Technology Inc. Hotel Guest Hotspot allows Reflected XSS.This issue affects Hotel Guest Hotspot: through 22012026. NOTE: The vendor was contacted early about this...
CVE-2025-4763 XSS in Aida Computer's Hotspot
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Aida Computer Information Technology Inc. Hotel Guest Hotspot allows Reflected XSS. This issue affects Hotel Guest Hotspot: through 22012026. NOTE: The vendor was contacted early about this...
MAL-2026-454 Malicious code in @mailpoet/component (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d48b40574c65ef747944583fa5a49ac40b673d6932a02247c2cdbd5331a79179 The package @mailpoet/component was found to contain malicious code. Source: ghsa-malware...
MAL-2026-451 Malicious code in @alluxio/common-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f082b7a72d74e881f10d6e0f01c1aef7a0a07b0f446d5a9d31a4763ffed2ed8 The package @alluxio/common-ui was found to contain malicious code. Source: ghsa-malware...
MAL-2026-457 Malicious code in csv-parsing-xx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfe9a306ce309515a134b6348aff27991f8725d7925ee31b1c51281c9d4a5bc8 The package csv-parsing-xx was found to contain malicious code. Source: ghsa-malware 3e16868b929858d45e76857e9157eae0e3631ca0e2e5988e69c6f537d0ad1a04...
PT-2026-3926
Authorization Bypass Through User-Controlled Key vulnerability in EXERT Computer Technologies Software Ltd. Co. Education Management System allows Parameter Injection.This issue affects Education Management System: through 23.09.2025...
MAL-2026-409 Malicious code in chai-async-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d513c8edc24de9b9993282b15030364ac655c161954965840f5a8d630470cef1 The package chai-async-test was found to contain malicious code. Source: ghsa-malware 44653d8509702f49ad07480d256afe34186fa1f3920fca7b95d57ef1f7ed855...
Malicious code in dotenv-expanded (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9e36cd005779e12b645b7ec5f6e65df1edae7c6d86736507cd1feacec1ef7cf The package dotenv-expanded was found to contain malicious code. Source: ghsa-malware 8c545865cdbec4a05b0f51103dd3560d60c3f43b818465e4a935a47bf84078d...
MAL-2026-424 Malicious code in plugin-react-swc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 197cedd065670a6a39b4401d52b2a636d5ff18f26c378b571770286a807ec467 The package plugin-react-swc was found to contain malicious code. Source: ghsa-malware cba9afea98505469e9b9f36095ab566e5cd857b54255290d9defa67c40c62a...
Malicious code in shroom-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12ce31b267373b04b6db8fa70688917b146c9cf34f2d548b58890a950af4f32a The package shroom-kit was found to contain malicious code. Source: ghsa-malware df93160efafaee42f3f1c238618282cd6845e4fea4f6b0804f5e759934e60f71 Any...
Malicious code in bitbot (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12996eb5ffac4767e62d0de9652080c360a42cc716421449362f9443c0ec02f4 The package bitbot was found to contain malicious code. Source: ghsa-malware 8167eda858c69a7322383c658afb961cdead784baba89931b2a10c0856c4a0cc Any...
Malicious code in kanban-webcomponent (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec3c671a99b49533fbfeaf2dd948f86f14d82ee338f622af22283b774159881f The package kanban-webcomponent was found to contain malicious code. Source: ghsa-malware...
MAL-2026-392 Malicious code in jsonwebauth (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 683ba88a9e72aab5f114bdd388e92a35230a3fcad8178b8c8d5e5e6fddf7b829 The package jsonwebauth was found to contain malicious code. Source: ghsa-malware c1c270e023225a3ab0872fa3ea9f9b94b0320639bdaa6fb0d30e9b65c9ba1db2 An...
Malicious code in worldposition (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector beaca526309cc1d15cd7126fdd32d924f5b13f138e7b4313c8e72de8e61d4c75 The package worldposition was found to contain malicious code. Source: ghsa-malware 628c985aec4893df2aa3a7bb1357716a6fbe539e22efbf16e0d61396c5b85d1e...
MAL-2026-393 Malicious code in manage-root (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ade61c26597c5b0a24785713d87a304ddf30ae13dd50c69ba89e653ec4c2729 The package manage-root was found to contain malicious code. Source: ghsa-malware 6b0fc8397f56e86ac97a5adedd2c89de19045dffbdabbf982ffcf5944449b178 An...
Malicious code in tor-libsignal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3281075aed24ae2af07fd17a56499318dcd8cd0fa836f60e1fa76814b90c2742 The package tor-libsignal was found to contain malicious code. Source: ghsa-malware 25164e8116dd5f0b085529d972fb628013ac35df2065ee934693a23bd13da788...
Malicious code in recaptcha-cors (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79037ac310e3ba605ade8d6657ea9fd4d8261583079397795e7afccbf432a4fd The package recaptcha-cors was found to contain malicious code. Source: ghsa-malware 4936a94d5d7ed5509cecba8ba4b13b5d37ff1f114318c83e868dc6e5627818be...
Malicious code in @diendh/n8n-nodes-tiktok-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16a12e0244dc2ac8964ace7fecf5dab971eb0b394e2979bce9a3e12ce33b01ce The package @diendh/n8n-nodes-tiktok-v2 was found to contain malicious code. Source: ghsa-malware...
MAL-2026-385 Malicious code in blocks-builder-manifest-generator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30f5efa34a1c44d974502110177cb7a60daf579349ed25937e66e342f7f7c24f The package blocks-builder-manifest-generator was found to contain malicious code. Source: ghsa-malware...
MAL-2026-377 Malicious code in potdf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a65730c16a2c27ad2cc810d067426e10aa9a28fae114fe94bb6f26e54bc45bc The package potdf was found to contain malicious code. Source: ghsa-malware 9537cd4226a1c122965aec751dfcb6153489552f7e29f57dcd62274654ec136a Any...