2734 matches found
Cookie Tossing
Overview Affected versions of this package are vulnerable to Cookie Tossing due to a missing Host- prefix on the gitpodiojwt2 session cookie. This allows an adversary who controls a subdomain to set the value of the cookie on the Gitpod control plane, which can be assigned to an attacker’s own JW...
PT-2024-20224 · Unknown · Lukas Bach
Name of the Vulnerable Software and Affected Versions: Lukas Bach yana version 1.0.16 Description: The issue is related to Cross Site Scripting XSS via src/electron-main.ts. Recommendations: For version 1.0.16, update to a version that is 1.0.16 or later to resolve the issue. As a temporary...
Yana Security Breach
Yana is a powerful laptop application from the individual developer Lukas Bach. A security vulnerability exists in Yana version 1.0.16 and prior versions, which stems from a cross-site scripting vulnerability in the src/electron-main.ts location...
OESA-2024-1761 ffmpeg security update
FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: A null pointer...
OESA-2024-1759 ffmpeg security update
FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: A null pointer...
PT-2024-25204 · Lumisxp · Lumisxp
Name of the Vulnerable Software and Affected Versions: Lumisxp versions 15.0.x through 16.1.x Description: A cross-site scripting XSS issue in the main.jsp component allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the pageId parameter. Recommendations...
Malicious code in test-package-main-dist (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in whach-watch-tu-jhoothi-main-makkar-on-fullmovies-online-streaming-at-homee2 (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-3923 Malicious code in watch-tu-jhoothi-main-makkar-on-fullmovies-online-streaming-at-homees4 (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-3922 Malicious code in watch-tu-jhoothi-main-makkar-on-fullmovies-online-streaming-at-homees (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in watch-tu-jhoothi-main-makkar-2023-on-fullmovies-online-streaming-at-homes (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-3919 Malicious code in watch-tu-jhoothi-main-makkaar-2023-hd-4k (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in watch-tu-jhoothi-main-makkaar-2023-hd-4k (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-3009 Malicious code in shazam-fury-of-the-gods-2023-full-online-free-on-streaming-at-index-main (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in pelisplus-repelis-ver-tu-jhoothi-main-makkaar-peliculas-completa-en-espanol (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-2863 Malicious code in pelisplus-repelis-ver-tu-jhoothi-main-makkaar-peliculas-completa-en-espanol (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in jhoothi-main-makkaar (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-2548 Malicious code in jhoothi-main-makkaar (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in here-watch-tu-jhoothi-main-makkar-at-online-streamings-at-homedsews (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in here-full-watch-tu-jhoothi-main-makkar-on-fullmovies-online-streaming-at-home (npm)
--- -= Per source details. Do not edit below this line.=-...