@adhawk/analytics-pixel-loader (>=0.0.2 <=2.0.2), @adhawk/analytics.js-integration-freshdesk (=0.1.0) +143 more potentially affected by CVE-2024-57066 via @ndhoule/defaults (=2.0.1)

@ndhoule/defaults NPM version =2.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on @ndhoule/defaults and may be impacted: - @adhawk/analytics-pixel-loader =0.0.2, =1.2.0, =1.0.0, =1.0.0, =0.0.1, =0.0.1, =1.0.0, =0.1.0, =1.0.0, =1.1.0 -...

Malicious code in paypal-js-advanced-integration-ib (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f3b3d606a46036e08dc78fd5e2e8fe3694d1607d120c062343a2868294d3c9c4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in js-integration-demo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fdf524832b5a7754384bb05dae5fb10558591f104915c2f9b5518db338003a92 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Kindeditor traverse the directory 0DAY-vulnerability warning-the black bar safety net

Author: sub - ↘meter Version: 3.4.2 Description: KindEditor is an open source HTML visual editor, mainly used to allow users on the site to get WYSIWYG editing effects, compatible with IE, Firefox, Chrome, Safari, Opera and other mainstream browser. KindEditor using JavaScript, you can seamlessly...

File existance checking in Microsoft Internet Explorer

It's possible to check file existance with dynsrc property or with file:// URL in conjunction with javascript...