4 matches found
MAL-2025-6103 Malicious code in login-oauth (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in login-oauth (npm)
The package communicates with a domain associated with malicious activity...
Apache Traffic Control code issue vulnerability
Apache Traffic Control is a distributed, scalable content distribution solution from the Apache Foundation. Apache Traffic Control Traffic Ops prior to 6.1.0 or 5.1.6 was vulnerable to a code issue that allowed unprivileged users who could reach traffic operations via HTTPS to send a special POST...
CVE-2022-23206
In Apache Traffic Control Traffic Ops prior to 6.1.0 or 5.1.6, an unprivileged user who can reach Traffic Ops over HTTPS can send a specially-crafted POST request to /user/login/oauth to scan a port of a server that Traffic Ops can reach...