Malicious code in test-mlw2-motes-liens (npm)

The package test-mlw2-motes-liens was found to contain malicious code...

MAL-2025-35810 Malicious code in test-mlw2-motes-liens (npm)

The package test-mlw2-motes-liens was found to contain malicious code...

Attacker can use buyNftFromMarket() to buy an NFT from an arbitrary collection

Lines of code Vulnerability details Impact The function buyNftFromMarket allows a borrower to buy an NFT from the same collection to repay a loan. At the end of the function flow, it checks that the contract actually holds the NFT tokenId and assumes that it is the acquired NFT. However, this is...

ciamt.org XSS vulnerability

Vulnerable URL: https://www.ciamt.org/nav.php?PAGE=liens"alert/OPENBUGBOUNTY/...

Liens_Dynamiques 2.1 - Multiple Unspecified Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/22070/info The 'liensdynamiques' program is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal...

CVE-2005-1701

SQL injection vulnerability in PortailPHP 1.3 allows remote attackers to execute arbitrary SQL commands via the id parameter to the 1 News, 2 File, 3 Liens, or 4 Faq modules...

Nuked-Klan 1.3 - Multiple Cross-Site Scripting Vulnerabilities

Nuked-Klan 1.3 Multiple Cross Site Scripting Vulnerabilities. CVE-2003-1238. Webapps exploit for php platform source: http://www.securityfocus.com/bid/6916/info It has been reported that Nuked-Klan beta 1.3 is prone to cross site scripting attacks. The problem occurs in the 'Team', 'News', and...