2 matches found
The vulnerability of the FunctionExpressions and TemplateLiterals functions in the static-eval package of the NPM package manager allows a hacker to execute arbitrary code.
The vulnerability of the FunctionExpressions and TemplateLiterals functions in the static-eval package of the NPM package manager is related to improper code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
Code injection
PHPIDS before 20070703 does not properly handle use of the substr method in 1 document.location.search and 2 document.referrer; 3 certain use of document.location.hash; 4 certain "windoweval" and similar expressions; 5 certain Function expressions; 6 certain '=' expressions, as demonstrated by a...