Malicious code in ifargafai-gafo-jag (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10181d3a3d21000751208d4e4998db98d39e84115b01996a7892b5407c4b1576 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mirai-igafo-jag (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c534b9f9fcd038cd21e2a77eecb8fc104f8ab26fd0df8cbffa2232bd4be7cdf8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2010-0696

Malware in sbrugna...

Malicious code in @zalastax/nolb-_jag (npm)

The package @zalastax/nolb-jag was found to contain malicious code...

jag-elec.fr Cross Site Scripting vulnerability OBB-2856935

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2019-18882

WSO2 IS as Key Manager 5.7.0 allows stored XSS in download-userinfo.jag because Content-Type is mishandled...

jag-hk.com XSS vulnerability

Open Bug Bounty ID: OBB-672974 Description| Value ---|--- Affected Website:| jag-hk.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

jag.com.au XSS vulnerability

Open Bug Bounty ID: OBB-579256 Description| Value ---|--- Affected Website:| jag.com.au Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

JAG (Just Another Guestbook) Detection (HTTP)

HTTP based detection of Just Another Guestbook JAG. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

JAG (Just Another Guestbook) <= 1.14 Information Disclosure Vulnerability

JAG is prone to an information disclosure vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

JAG (Just Another Guestbook) Information Disclosure Vulnerability

The host is running JAG and is prone to Information Disclosure vulnerability. OpenVAS Vulnerability Test $Id: secpodjaginfodiscvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ JAG Just Another Guestbook Information Disclosure Vulnerability Authors: Rachana Shetty Copyright: Copyright c 2010 SecPod,...

CVE-2010-0665

JAG Just Another Guestbook 1.14 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request for jag/database.sql...

Improper access control

JAG Just Another Guestbook 1.14 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request for jag/database.sql...

CVE-2010-0665

CVE-2010-0665 relates to JAG (Just Another Guestbook) 1.14. The issue is an information disclosure due to insufficient access control: an attacker can directly request jag/database.sql from the web root to obtain sensitive data. The NVD entry cites a base score of 5.0 (Medium) with network attack...

CVE-2010-0665

JAG Just Another Guestbook 1.14 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request for jag/database.sql...