Malicious code in @commute/market-data-chartjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e906d8b501e2641730640922fb6196f422637e4fa3c7eb6e5823dc3f6301026c The package @commute/market-data-chartjs was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-199325

Malicious code in @commute/market-data-chartjs npm...

MAL-2025-191209 Malicious code in @commute/market-data-chartjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e906d8b501e2641730640922fb6196f422637e4fa3c7eb6e5823dc3f6301026c The package @commute/market-data-chartjs was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-199326

Malicious code in @commute/market-data npm...

Malicious code in @commute/market-data (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a16df195ab72fb1d4373954a3ec23ba8a1ff07bda668f840f4d6a07dfbf771dd The package @commute/market-data was found to contain malicious code. Source: ghsa-malware...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

EUVD-2020-27448

Malware in sbrugna...

CVE-2021-21467

SAP Banking Services Generic Market Data does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. An unauthorized User is allowed to display restricted Business Partner Generic Market Data GMD, due to improper authorization check...

CVE-2020-6298

SAP Banking Services Generic Market Data, versions - 400, 450, 500, allows an unauthorized user to display protected Business Partner Generic Market Data GMD and change related GMD key figure values, due to Missing Authorization Check...

WordPress Financial Stocks & Crypto Market Data Plugin plugin <= 1.10.3 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Financial Stocks & Crypto Market Data Plugin versions = 1.10.3...

CVE-2024-11690

The Financial Stocks & Crypto Market Data Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'e' parameter in all versions up to, and including, 1.10.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers...

carbonmarketdata.com Cross Site Scripting vulnerability OBB-3949414

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

carbonmarketdata.com Cross Site Scripting vulnerability OBB-3864553

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

[SECURITY] Fedora 38 Update: python-yfinance-0.2.28-4.fc38

Ever since Yahoo! finance decommissioned their historical data API, many programs that relied on it to stop working. yfinance aims to solve this problem by offering a reliable, threaded, and Pythonic way to download historical market data from Yahoo! finance...

CVE-2021-21467

SAP Banking Services Generic Market Data does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. An unauthorized User is allowed to display restricted Business Partner Generic Market Data GMD, due to improper authorization check...

Authorization

SAP Banking Services Generic Market Data does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. An unauthorized User is allowed to display restricted Business Partner Generic Market Data GMD, due to improper authorization check...

CVE-2021-21467

CVE-2021-21467 affects SAP Banking Services (Generic Market Data). The vulnerability stems from improper authorization checks that allow an authenticated user to access restricted Business Partner Generic Market Data, enabling elevation of privileges. Affected product/component: SAP Banking Servi...

PT-2021-14535 · Sap · Sap Banking Services

Name of the Vulnerable Software and Affected Versions: SAP Banking Services Generic Market Data affected versions not specified Description: The issue is related to improper authorization checks, allowing an unauthorized user to access restricted Business Partner Generic Market Data GMD. This...

Unspecified Vulnerability in SAP Banking Services

SAP Banking Services is a banking services solution from SAP. A security vulnerability exists in SAP Banking Services versions 400, 450, and 500 that stems from a lack of privilege checking in the program. An attacker could exploit the vulnerability to display a user's General Market Data GMD and...

CVE-2020-6298

SAP Banking Services Generic Market Data, versions - 400, 450, 500, allows an unauthorized user to display protected Business Partner Generic Market Data GMD and change related GMD key figure values, due to Missing Authorization Check...