MAL-2025-186509 Malicious code in decrypt-info-meta-table-big (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be4883bdd1cd22e99353350c8cdb2c98e0bd344ac3801dc0999b5d205d66f663 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

CMSQLite <= 1.2 c参数SQL注入漏洞

CMSQLite是基于PHP和SQLite的内容管理系统。 CMSQlite的index.php页面存在SQL注入漏洞： ifisset$GET'c' $contentId=$GET'c'; else if $seourl $arrArticleInfo = $SYSTEM-resolveURL$SERVER'REQUESTURI', $langId; ifempty$arrArticleInfo $contentId=1; else $contentId = $arrArticleInfo0'articleId'; $module = $arrArticleInfo0'module';...