4 matches found
MAL-2026-6248 Malicious code in jsonschema-viewer (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3692022b4caf5ac51d868aaae58e793520ac3bd36703841eb615942baf85bb87 The package's only function — main in src/jsonschemaviewer/main.py, registered as the jsonschema-viewer console script — invokes os.system to fetch a...
LY Corporation: Use of unreleased features in programming education service (https://entry.line.me)
LINE entry is a service that provides programming education for children https://entry.line.me. Sharing creations was a feature that was previously only available to admins, and the feature was still under development before creators users were allowed to use it. The vulnerability was a case in...
LY Corporation: Deleting someone else's profile image with a GraphQL query in programming education service (https://entry.line.me)
LINE entry is a service that provides programming education for children https://entry.line.me. LINE entry provides users with the ability to add profile images. It was possible to delete other people's profile images or thumbnails using a GraphQL query...
CVS < 1.11.16 / 1.12.8 pserver Line Entry Handling Remote Overflow
Binary data 1220.prm...