2 matches found
Malicious code in grunt-import-html (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0ec8e51891af00720a442bc65b07916738dba4f56e5692d70fd86172e2ae699e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2020-10413
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/import-html.php by adding a question mark ? followed by the payload...