TinaCMS 安全漏洞

TinaCMS is an open-source headless CMS developed by Tina for Markdown, MDX, and JSON formats. Versions of TinaCMS prior to 2.2.2 contained a security vulnerability. This vulnerability stemmed from string-based path validation in FilesystemBridge, which allowed operations on files outside of the...

Malicious code in rollup-plugin-style-loader-fornax-mdx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c6f50a3b799ed48afece1f3c0ca47c28c205b07ca81e8376485774124ef1ed5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...