Malicious code in @expressions/excel-functions (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0f285f6202227757b1ae10391ea069ae841e5b19a58529e5ce7b0f0a37e48c91 The OpenSSF Package Analysis project identified '@expressions/excel-functions' @ 3.0.0 npm as malicious. It is considered malicious because: - T...

MAL-2023-1079 Malicious code in @expressions/excel-functions (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0f285f6202227757b1ae10391ea069ae841e5b19a58529e5ce7b0f0a37e48c91 The OpenSSF Package Analysis project identified '@expressions/excel-functions' @ 3.0.0 npm as malicious. It is considered malicious because: - T...

Microsoft Excel Information Disclosure Vulnerability

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could craft a special...

Input validation

The Hustle aka wordpress-popup plugin 6.0.7 for WordPress is vulnerable to CSV Injection as it allows for injecting malicious code into a pop-up window. Successful exploitation grants an attacker with a right to execute malicious code on the administrator's computer through Excel functions as the...

CVE-2019-11872

The Hustle aka wordpress-popup plugin 6.0.7 for WordPress is vulnerable to CSV Injection as it allows for injecting malicious code into a pop-up window. Successful exploitation grants an attacker with a right to execute malicious code on the administrator's computer through Excel functions as the...