Malicious code in react-dnd-examples-decorators (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b335bf9dc6443f555a9a3ebeeadd7bebecedee805e6bf3c7d0eb551895a34647 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-5639 Malicious code in react-dnd-examples-decorators (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b335bf9dc6443f555a9a3ebeeadd7bebecedee805e6bf3c7d0eb551895a34647 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in component-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 525e90b77d9794e6eaeb7b0ad0c70481ca70086b882fe64d2dd07d0e29abc00d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-2144 Malicious code in component-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 525e90b77d9794e6eaeb7b0ad0c70481ca70086b882fe64d2dd07d0e29abc00d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in handsontable-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b13becaf408b798f3fe3a45b3f4a3ecd67fe94558f3eeccf71d430337eff600f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3557 Malicious code in handsontable-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b13becaf408b798f3fe3a45b3f4a3ecd67fe94558f3eeccf71d430337eff600f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3812 Malicious code in influxdb-client-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 92e3f74130d6b59657161386b5b972629a0eb5251ad5cfeaba8c8e6b720fdafc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

org.apache.activemq:apache-activemq (>=4.1.1 <=5.19.6), org.apache.axis2:axis2-integration (=1.4) +4 more potentially affected by CVE-2012-6551 via org.apache.activemq:activemq-web-demo (>=4.1.1 <=5.7.0)

org.apache.activemq:activemq-web-demo MAVEN version =4.1.1, =4.1.1, =1.2.0, =1.1.0, =1.3.0 - org.apache.camel:camel-example-spring =1.2.0 - org.apache.camel:camel-example-spring-xquery =1.3.0 Source cves: CVE-2012-6551 Source advisory: OSV:GHSA-34FP-XVXP-RG22...

co.cask.tephra:tephra-examples (>=0.6.2 <=0.7.1), co.cask.tephra:tephra-hbase-compat-1.0-cdh (>=0.6.0 <=0.7.1) +356 more potentially affected by CVE-2016-5393 via org.apache.hadoop:hadoop-common (>=2.6.0 <=2.6.4)

org.apache.hadoop:hadoop-common MAVEN version =2.6.0, =0.6.2, =0.6.0, =1.7.0, =1.1.0, =1.1.0, =7.2.1, =3.0.0, =3.0.0, =7.2.1, =3.0.0, =3.0.0, =3.0.0, =3.6.7 and more Source cves: CVE-2016-5393 Source advisory: OSV:GHSA-7Q56-MP4C-GGGG...

org.apache.poi:poi-examples (=3.11-beta1), org.apache.poi:poi-excelant (=3.11-beta1) +2 more potentially affected by CVE-2014-3574 via org.apache.poi:poi (=3.11-beta1)

org.apache.poi:poi MAVEN version =3.11-beta1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.poi:poi and may be impacted: - org.apache.poi:poi-examples =3.11-beta1 - org.apache.poi:poi-excelant =3.11-beta1 - org.apache.poi:poi-ooxml...

org.apache.activemq:apache-activemq (>=5.0.0 <=5.19.6), org.apache.axis2:axis2-integration (=1.4) +4 more potentially affected by CVE-2010-1587 via org.apache.activemq:activemq-web-console (>=5.0.0 <=5.3.0)

org.apache.activemq:activemq-web-console MAVEN version =5.0.0, =5.0.0, =5.19.6 - org.apache.axis2:axis2-integration =1.4 - org.apache.camel:camel-example-cxf =1.3.0 - org.apache.camel:camel-example-jms-file =1.3.0 - org.apache.camel:camel-example-spring-xquery =1.3.0 -...

br.com.phdigitalcode:carga_planilha (=0.0.1), com.github.kondaurovdev:apache_poi_2.11 (=0.1.1) +2 more potentially affected by CVE-2016-5000 via org.apache.poi:poi-examples (>=3.10-beta1 <=3.13)

org.apache.poi:poi-examples MAVEN version =3.10-beta1, =1.0.5, =1.0, =1.2 Source cves: CVE-2016-5000 Source advisory: OSV:GHSA-PMQQ-7WFV-JFFF...

ch.qos.logback:logback-examples (>=1.3.0-alpha0 <=1.3.0-alpha4) potentially affected by CVE-2018-8088 via org.slf4j:slf4j-ext (>=1.8.0-beta0 <=1.8.0-beta1)

org.slf4j:slf4j-ext MAVEN version =1.8.0-beta0, =1.3.0-alpha0, =1.3.0-alpha4 Source cves: CVE-2018-8088 Source advisory: OSV:GHSA-W77P-8CFG-2X43...

Stripe: Tomcat Servlet Examples accessible at https://44.240.33.83:38443 and https://52.36.56.155:38443

Tomcat Servlet Examples were accessible from the internet. This report demonstrated that it was possible to disclose IP addresses of internal application servers...

Apache Tomcat Example Application CSRF and XSS Vulnerabilities

Cross-site request forgery CSRF vulnerability in cal2.jsp in the calendar examples application in Apache Tomcat 4.1.31 allows remote attackers to add events as arbitrary users via the time and description parameters...

GHSA-G77G-VJJM-X83J Apache Tomcat Example Application CSRF and XSS Vulnerabilities

Cross-site request forgery CSRF vulnerability in cal2.jsp in the calendar examples application in Apache Tomcat 4.1.31 allows remote attackers to add events as arbitrary users via the time and description parameters...

GHSA-HC39-RJWP-QFFQ Apache Tomcat XSS Vulnerabilities in Examples Web Application

Multiple cross-site scripting XSS vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via...

Apache Tomcat XSS Vulnerabilities in Examples Web Application

Multiple cross-site scripting XSS vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via...

GHSA-5HGM-QM5M-5VMW Jakarta Tomcat cross-site scripting (XSS) vulnerability

Multiple cross-site scripting XSS vulnerabilities in the 1 examples and 2 ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HTML...

Undetectable Backdoors in Machine-Learning Models

New paper: "Planting Undetectable Backdoors in Machine Learning Models": Abstract: Given the computational cost and technical expertise required to train machine learning models, users may delegate the task of learning to a service provider. We show how a malicious learner can plant an undetectab...