Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSV
OSVadded 2022/06/20 6:20 p.m.5 views

MAL-2022-208 Malicious code in @drive2/fetlife-assets (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 901afee90f9b5e579c7deb26fb72c34e8b8ef47e97afc36dfaa081ac133ff088 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/06/20 6:20 p.m.3 views

Malicious code in @drive2/fetlife-assets (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 901afee90f9b5e579c7deb26fb72c34e8b8ef47e97afc36dfaa081ac133ff088 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Hacker One
Hacker Oneadded 2020/03/31 9:28 a.m.465 views

DRIVE.NET, Inc.: [www.drive2.ru] CSRF through FCTX token bypass

During login on the login page, login is attempted through the FCTX token. In addition, the login page was implemented through g-recaptcha-response captcha, but an attacker can bypass g-recaptcha-response captcha without FCTX tokens, and login CSRF is possible. The issue was fixed by enabling the...

1.2AI score
Exploits0
Rows per page
Query Builder