CVE-2022-34305

In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81 the Form authentication example in the examples web application displayed user provided data without filtering, exposing a XSS vulnerability...

Cross site scripting

In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81 the Form authentication example in the examples web application displayed user provided data without filtering, exposing a XSS vulnerability...

CVE-2022-34305 XSS in examples web application

In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81 the Form authentication example in the examples web application displayed user provided data without filtering, exposing a XSS vulnerability...

CVE-2022-34305

In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81 the Form authentication example in the examples web application displayed user provided data without filtering, exposing a XSS vulnerability...

Malicious Package

Overview influxdb-client-examples is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

Malicious Package

Overview handsontable-examples is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

Apache Tomcat 9.0.30 < 9.0.65

The version of Tomcat installed on the remote host is prior to 9.0.65. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat9.0.65security-9 advisory. - In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81 the Form...

Tomcat -- XSS in examples web application

Apache Tomcat reports: The Form authentication example in the examples web application displayed user provided data without filtering, exposing a XSS vulnerability...

Msprobe - Finding All Things On-Prem Microsoft For Password Spraying And Enumeration

Finding all things on-prem Microsoft for password spraying and enumeration. The tool will used a list of common subdomains associated with your target apex domain to attempt to discover valid instances of on-prem Microsoft solutions. Screenshots of the tool in action are below: Installing Install...

Malicious code in patreon-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3b4c9c5b8c53ac331becc99f1d1b6de3dd3bcd03c7fee11e5d4a6684c32024b5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-5229 Malicious code in patreon-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3b4c9c5b8c53ac331becc99f1d1b6de3dd3bcd03c7fee11e5d4a6684c32024b5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-dnd-examples-decorators (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b335bf9dc6443f555a9a3ebeeadd7bebecedee805e6bf3c7d0eb551895a34647 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-5639 Malicious code in react-dnd-examples-decorators (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b335bf9dc6443f555a9a3ebeeadd7bebecedee805e6bf3c7d0eb551895a34647 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in component-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 525e90b77d9794e6eaeb7b0ad0c70481ca70086b882fe64d2dd07d0e29abc00d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-2144 Malicious code in component-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 525e90b77d9794e6eaeb7b0ad0c70481ca70086b882fe64d2dd07d0e29abc00d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in handsontable-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b13becaf408b798f3fe3a45b3f4a3ecd67fe94558f3eeccf71d430337eff600f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3557 Malicious code in handsontable-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b13becaf408b798f3fe3a45b3f4a3ecd67fe94558f3eeccf71d430337eff600f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3812 Malicious code in influxdb-client-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 92e3f74130d6b59657161386b5b972629a0eb5251ad5cfeaba8c8e6b720fdafc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

org.apache.activemq:apache-activemq (>=4.1.1 <=5.19.6), org.apache.axis2:axis2-integration (=1.4) +4 more potentially affected by CVE-2012-6551 via org.apache.activemq:activemq-web-demo (>=4.1.1 <=5.7.0)

org.apache.activemq:activemq-web-demo MAVEN version =4.1.1, =4.1.1, =1.2.0, =1.1.0, =1.3.0 - org.apache.camel:camel-example-spring =1.2.0 - org.apache.camel:camel-example-spring-xquery =1.3.0 Source cves: CVE-2012-6551 Source advisory: OSV:GHSA-34FP-XVXP-RG22...

co.cask.tephra:tephra-examples (>=0.6.2 <=0.7.1), co.cask.tephra:tephra-hbase-compat-1.0-cdh (>=0.6.0 <=0.7.1) +356 more potentially affected by CVE-2016-5393 via org.apache.hadoop:hadoop-common (>=2.6.0 <=2.6.4)

org.apache.hadoop:hadoop-common MAVEN version =2.6.0, =0.6.2, =0.6.0, =1.7.0, =1.1.0, =1.1.0, =7.2.1, =3.0.0, =3.0.0, =7.2.1, =3.0.0, =3.0.0, =3.0.0, =3.6.7 and more Source cves: CVE-2016-5393 Source advisory: OSV:GHSA-7Q56-MP4C-GGGG...