Malicious code in inufgi-goa-janga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f6ad2877e7a5c4758657e1eca6ff56d480fdf6e0d6477299d57c5da8f956f7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in inufgi-goa-jamna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d50f9ffc4f929c5937d649d9c2c5352e65958084f19c19f6c6f149bb0a8389e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in inufgi-goa-jamufgaia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2dec7f2b927e2eab194bf263e6bbd5ba3716eb754a9d4a352d56d7f78c362134 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in inufgi-goa-jamufifa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a81f49273edf2f9466b3ca8e410c704addd0ee2f05c4bdd55c94e4d0d9af7efe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2022-7619

Malicious code in bioql PyPI...

nullcon Goa 2026 Call for Papers

The Call For Papers for nullcon Goa 2026 is now open. Nullcon is an information security conference held in Goa, India. The focus of the conference is to showcase the next generation of offensive and defensive security technology. It will take place February 28th through March 1st, 2026...

MAL-2025-10042 Malicious code in @zalastax/nolb-_goa (npm)

The package @zalastax/nolb-goa was found to contain malicious code...

MAL-2025-11614 Malicious code in @zalastax/nolb-goa (npm)

The package @zalastax/nolb-goa was found to contain malicious code...

Malicious code in @zalastax/nolb-goa (npm)

The package @zalastax/nolb-goa was found to contain malicious code...

CVE-2019-25073

Improper path sanitization in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory...

Path Traversal

github.com/goadesign/goa is vulnerable to path traversal. The vulnerability exists in service.go due to improper path sanitization which allows an attacker to overwrite files outside of the extraction directory...

Goa vulnerable to path traversal

Improper path santiziation in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory...

GHSA-FJGQ-224F-FQ37 Goa vulnerable to path traversal

Improper path santiziation in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory...

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Improper path santiziation in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory...

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Improper path santiziation in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory...

CVE-2019-25073 Path traversal in github.com/goadesign/goa

Improper path sanitization in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory...

CVE-2019-25073

The CVE-2019-25073 entry affects github.com/goadesign/goa: versions prior to v3.0.9, v2.0.10, and v1.4.3 are vulnerable due to improper path sanitization, allowing remote attackers to read files outside the intended directory. This path traversal could expose sensitive files in affected deploymen...

CVE-2019-25073 Path traversal in github.com/goadesign/goa

Improper path sanitization in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory...

Goa 路径遍历漏洞

Goa is a design-based API and microservice in Goa open source. A path traversal vulnerability exists in Goa versions 3.0 through 3.0.9 and prior, 2.0 through 2.0.10 and prior, and 1.0 through 1.4.3 and prior, which stems from an incorrect path classification. An attacker could use this...

goa-on.org Cross Site Scripting vulnerability OBB-2178213

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...