Lucene search
K

5 matches found

EUVD
EUVD
added 2025/12/30 4:12 p.m.3 views

EUVD-2025-205789

Malicious code in rt-text-media-collection npm...

6.6AI score
Exploits0References1
OSV
OSV
added 2025/12/30 4:12 p.m.3 views

MAL-2025-192975 Malicious code in rt-text-media-collection (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 761afaf4df6aa1b7badedc5757ada134cb041af11dad1257171abae2be3a4589 The package rt-text-media-collection was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References1
Hacker One
Hacker One
added 2024/09/04 1:25 p.m.2 views

U.S. Dept Of Defense: CSRF Attack leads to delete album at ████████

The report describes a CSRF vulnerability in the DoD asset ███████, specifically in the feature to create albums for a media collection. The vulnerability allows an attacker to delete a victim's album without the victim's consent, as the delete request is based on GET and lacks CSRF verification...

7AI score
Exploits0
Github Security Blog
Github Security Blog
added 2021/07/02 6:32 p.m.67 views

XSS Injection in Media Collection Title was possible

Impact A logged in admin user was possible to add a script injection XSS in the collection title which was executed. Workarounds Manual patching the js files. For more information If you have any questions or comments about this advisory:' - Email us at [email protected]...

8.4CVSS1.5AI score0.00665EPSS
Exploits0References4Affected Software1
Schneier on Security
Schneier on Security
added 2017/09/28 12:43 p.m.13 views

Department of Homeland Security to Collect Social Media of Immigrants and Citizens

New rules give the DHS permission to collect "social media handles, aliases, associated identifiable information, and search results" as part of people's immigration file. The Federal Register has the details, which seems to also include US citizens that communicate with immigrants. This is part ...

6.8AI score
Exploits0
Rows per page
Query Builder