14 matches found
Malicious code in @nxt-costco-com/forge-icons (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 641344edeaa32a2f52f1274b17c2ba52ff688d8bbdc91484e29840bf7a9c5dae The package @nxt-costco-com/forge-icons was found to contain malicious code...
MAL-2026-1632 Malicious code in @nxt-costco-com/forge-design-tokens (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86e4556dfaa2a30079bf31edd7c9a378deacc22b763f547a4b825d57945debef The package @nxt-costco-com/forge-design-tokens was found to contain malicious code...
MAL-2026-1631 Malicious code in @nxt-costco-com/forge-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a0e0f35823f6346841117866bac7213bfac75a55af137f2e63b2ac33dba9a54 The package @nxt-costco-com/forge-components was found to contain malicious code...
Malicious code in leadconduit-costco (npm)
The package leadconduit-costco was found to contain malicious code...
MAL-2025-25019 Malicious code in leadconduit-costco (npm)
The package leadconduit-costco was found to contain malicious code...
Someone Snuck a Card Skimmer Into Costco to Nab Shopper Data
Plus: A Robinhood breach, NSO Group spyware, and more of the week's top security news...
Costco Confirms: A Data Skimmer’s Been Ripping Off Customers
Costco has discovered a payment card skimming device at one of its retail stores and has sent out notification letters informing customers that their card data may have been ripped off if they shopped there recently. Some customers have been aware for weeks that something was fishy and have been...
customerservice.costco.com Cross Site Scripting vulnerability OBB-1239817
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
customerservice.costco.com Cross Site Scripting vulnerability
Security Researcher lonelygunda Helped patch 18 vulnerabilities Received 2 Coordinated Disclosure badges Received 7 recommendations , a holder of 2 badges for responsible and coordinated disclosure, found a security vulnerability affecting customerservice.costco.com website and its users. Followi...
コストコおすすめ通販.com XSS vulnerability
Open Bug Bounty ID: OBB-719377 Description| Value ---|--- Affected Website:| コストコおすすめ通販.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...
video.costco.com XSS vulnerability
Open Bug Bounty ID: OBB-625148 Description| Value ---|--- Affected Website:| video.costco.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
bbs.costcotuu.com XSS vulnerability
Open Bug Bounty ID: OBB-531660 Description| Value ---|--- Affected Website:| bbs.costcotuu.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
costco.com XSS vulnerability
Vulnerable URL: https://www.costco.com/drug-results-details-price?drugName=x=%27-prompt%27OPENBUGBOUNTY%27-%27 Details: Description| Value ---|--- Patched:| Yes, at 06.11.2017 Latest check for patch:| 06.11.2017 10:51 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...
costco.com XSS vulnerability
Vulnerable URL: https://www.costco.com/drug-results-details-price?drugName=x='-prompt'OPENBUGBOUNTY'-' Details: Description| Value ---|--- Patched:| Yes, at 26.06.2017 Latest check for patch:| 26.06.2017 06:10 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 531...