7 matches found
Malicious Package
Overview redux-saga-devtool is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2025-42066 Malicious code in redux-saga-devtool (npm)
The package redux-saga-devtool was found to contain malicious code...
Malicious code in redux-saga-devtool (npm)
The package redux-saga-devtool was found to contain malicious code...
MAL-2022-6100 Malicious code in shopify-devtool (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7bf588145639b39e05763bc95249693461de81f172dd824722ba2519593cc78a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in shopify-devtool (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7bf588145639b39e05763bc95249693461de81f172dd824722ba2519593cc78a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Reddit: XSS
hi security team i have found a XSS in old.reddit.com and in reddit.com Description: Cross-site scripting also known as XSS is a web security vulnerability that allows an attacker to compromise the interactions that users have with a vulnerable application. It allows an attacker to circumvent the...
OS Command Injection
firefox is vulnerable to command injection. The vulnerability exists as the Devtool's Copy as cURL feature did not fully escape website-controlled data, potentially leading to command injection...