22 matches found
Malicious code in bun-plugin-httpfile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae0f656e3adcef8f66c427a2cc68a9a0e99581c1a429ab204f9451c59dab21a1 The package bun-plugin-httpfile was found to contain malicious code. Source: ghsa-malware...
MAL-2025-191079 Malicious code in bun-plugin-httpfile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae0f656e3adcef8f66c427a2cc68a9a0e99581c1a429ab204f9451c59dab21a1 The package bun-plugin-httpfile was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-199155
Malicious code in bun-plugin-httpfile npm...
Malicious code in webpack-loader-httpfile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dac614016dd648eebd83cab4f9c04585d52439a98b69d5e02694cb48119dfd96 The package webpack-loader-httpfile was found to contain malicious code. Source: ghsa-malware...
MAL-2025-191154 Malicious code in webpack-loader-httpfile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dac614016dd648eebd83cab4f9c04585d52439a98b69d5e02694cb48119dfd96 The package webpack-loader-httpfile was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-199194
Malicious code in webpack-loader-httpfile npm...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
EUVD-2025-198818
Malicious code in rollup-plugin-httpfile npm...
MAL-2025-190858 Malicious code in rollup-plugin-httpfile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bf613b52797ec3ff23536082d58a6d97dc4c672dfeecf2dc2ce21709ff8cdf7 The package rollup-plugin-httpfile was found to contain malicious code. Source: ghsa-malware...
Malicious code in esbuild-plugin-httpfile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efc9c8640b4324e3d5e06e51fa01e3029117ab9121c0baa55b1f81b1b73019a8 The package esbuild-plugin-httpfile was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198739
Malicious code in esbuild-plugin-httpfile npm...
MAL-2025-190771 Malicious code in esbuild-plugin-httpfile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efc9c8640b4324e3d5e06e51fa01e3029117ab9121c0baa55b1f81b1b73019a8 The package esbuild-plugin-httpfile was found to contain malicious code. Source: ghsa-malware...
Malicious code in vite-plugin-httpfile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d63741ea6b6aadbc224aabf56e98c5eb7b664d7554dbb502869a97ffffb2f46 The package vite-plugin-httpfile was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198792
Malicious code in vite-plugin-httpfile npm...
CVE-2022-2560
This vulnerability allows remote attackers to delete arbitrary files on affected installations of EnterpriseDT CompleteFTP 22.1.0 Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HttpFile class. The issue results from the lack of proper...
CVE-2022-2560
This vulnerability allows remote attackers to delete arbitrary files on affected installations of EnterpriseDT CompleteFTP 22.1.0 Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HttpFile class. The issue results from the lack of proper...
CVE-2022-2560
This vulnerability allows remote attackers to delete arbitrary files on affected installations of EnterpriseDT CompleteFTP 22.1.0 Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HttpFile class. The issue results from the lack of proper...
Design/Logic Flaw
This vulnerability allows remote attackers to delete arbitrary files on affected installations of EnterpriseDT CompleteFTP 22.1.0 Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HttpFile class. The issue results from the lack of proper...
CVE-2022-2560
This vulnerability allows remote attackers to delete arbitrary files on affected installations of EnterpriseDT CompleteFTP 22.1.0 Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HttpFile class. The issue results from the lack of proper...