The vulnerability of the DigiExam online test control software lies in the lack of verification data for integrity checks. This allows a perpetrator to gain access to personal data and account information on shared computers.

The vulnerability of the DigiExam online test control software lies in the lack of control data for verifying integrity. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to personal data and account information on shared computers...

Malicious code in hsisu (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6c986ceb6d450b915124305a19037997afedd7936b69467f557d17afd7182d27 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in testhacknowz (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f8e35447833146cb97e01cbf36881b7d380caaacdef83cf1e276f822b288284b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-1027 Malicious code in @ozon-maps/map-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dbfd1be2f4f9a09e5f0ba2fbef81062825b5959a48a8e035d3bc1a1aeb527421 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in eslint-plugin-scp-custom-rules (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8860b8044f2adb9c969cdcf764976c8f9e110be9d0b0a03d095998595aec3938 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-1028 Malicious code in aurora-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4392d1914575e090dacd661c28ce77f65b0f9f82c9389a1fe366f9216a09b0b0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-toolbox-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 422a604d191acbb8c624bc1ef790995e034a891c2bb65d4fdf729675ed8d4ae6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in coinbase-mobile (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 97d10c10cdb864741306ba012b858134b0cd20f7890b57f31eab5ca403df160c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in js-node-ethers (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b096038aa13ffe408e446c95499cf94a514d9231887e564f8ddd667f99e0ecf2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-199 Malicious code in coingecko-prices (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1bee7aadebfb8b0a1f20f634d7079ec48f9ce73ecb3ca8dbf9d4c55cd2c7d402 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in afterpay (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0d65821f7845bf39a23f9778347a76ca151807656e577af383b74fbef0eaf7c0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in concord-console (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7557a87ec03b1b952655ca887ba93d78eb3e94a2674fbc2e2d2b86fae5272dc4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-679 Malicious code in perimeterx-fastly-js-edge-template (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 934118ad5800d3dc8e17c6e7ed99b345399d4eae19e298de4f8a35834f872cc8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in anjelo-pogi (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e0ae3e1d87bbd89236a43688421d25e9529a87f6f5ad872564d2806ba2c6447b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in fca-jelongz (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6b28d1e340956be0c08d438e22798f34bf924f9da15d5e03ce1d8baefd0bb021 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-33668

DigiExam up to v14.0.2 lacks integrity checks for native modules, allowing attackers to access PII and takeover accounts on shared computers...

CVE-2023-33668

DigiExam up to v14.0.2 lacks integrity checks for native modules, allowing attackers to access PII and takeover accounts on shared computers...

Design/Logic Flaw

DigiExam up to v14.0.2 lacks integrity checks for native modules, allowing attackers to access PII and takeover accounts on shared computers...

Malicious code in fca-gminh-kizz (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 073e365c4d0486413d523593a16aa8c215dd18db7c3a1ccedd35eaf2609f1ac7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in fhr-jake (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 332978484d39cfe7467149d4de9ced06cfe5cab362c268c181af479e3f9c73b5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...