Malicious Package

Overview seller-listing-service is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

Malicious code in seller-listing-service (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8688aaa3e38ab3bfd132b1575c132517353f1b3406028da23c121d5dd37d0ab0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

FTP Drive + HTTP 1.0.4 iOS - Code Execution Vulnerability

Document Title: =============== FTP Drive + HTTP 1.0.4 iOS - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1231 Release Date: ============= 2014-03-20 Vulnerability Laboratory ID VL-ID: ====================================...

CVE-2009-4585

UranyumSoft Listing Service stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/db.mdb...

Improper access control

UranyumSoft Listing Service stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/db.mdb...

CVE-2009-4585

The CVE-2009-4585 entry concerns UranyumSoft Listing Service, where improper access control exposes sensitive data. The underlying issue is insufficient access restrictions at the web root, allowing an attacker to download the database file database/db.mdb via a direct HTTP request. The available...

CVE-2009-4585

UranyumSoft Listing Service stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/db.mdb...