MAL-2026-4735 Malicious code in xy-ai-chat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f9025a3fddb0d31a5cd9114850b0ca859acf96e54649d4d2a9fe286b7ca015c xy-ai-chat ships a Lit web component whose bundled main entry hardcodes two plain-HTTP endpoints on a bare IPv4 address:...

Security Bulletin: Open Redirection in IBM Tivoli Federated Identity Manager (CVE-2014-3097)

Summary In certain cases, IBM Tivoli Federated Identity Manager does not handle end user provided data before using that data to construct an HTTP redirect request. Vulnerability Details CVE ID: CVE-2014-3097 DESCRIPTION: In certain cases, IBM Tivoli Federated Identity Manager does not correctly...