EUVD-2018-0329

Malware in sbrugna...

Malicious code in ikst (npm)

The package ikst was found to contain malicious code...

MAL-2025-23045 Malicious code in ikst (npm)

The package ikst was found to contain malicious code...

GHSA-W23F-F3C5-R9QH ikst Downloads Resources over HTTP

Affected versions of ikst insecurely download resources over HTTP. In scenarios where an attacker has a privileged network position, they can modify or read such resources at will. While the exact severity of impact for a vulnerability like this is highly variable and depends on the behavior of t...

ikst Downloads Resources over HTTP

Affected versions of ikst insecurely download resources over HTTP. In scenarios where an attacker has a privileged network position, they can modify or read such resources at will. While the exact severity of impact for a vulnerability like this is highly variable and depends on the behavior of t...

Unspecified vulnerability in ikst

ikst is a software package. A security vulnerability exists in versions prior to ikst 1.1.2 that originates when the program downloads resources over the HTTP protocol. An attacker could use the vulnerability to modify or read downloaded resources and potentially execute code...

CVE-2017-16041

ikst versions before 1.1.2 download resources over HTTP, which leaves it vulnerable to MITM attacks...

CVE-2017-16041

ikst versions before 1.1.2 download resources over HTTP, which leaves it vulnerable to MITM attacks...

Design/Logic Flaw

ikst versions before 1.1.2 download resources over HTTP, which leaves it vulnerable to MITM attacks...

CVE-2017-16041

ikst versions before 1.1.2 download resources over HTTP, which leaves it vulnerable to MITM attacks...

CVE-2017-16041

The CVE-2017-16041 entry concerns ikst before version 1.1.2, which downloads resources over HTTP. The underlying issue is insecure resource fetching, enabling a man-in-the-middle (MITM) attacker with network access to modify or read resources. Affected component is the ikst download logic; impact...