2 matches found
MAL-2025-145263 Malicious code in mysql-sqlite-eslint-plugin-selenium (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec435a93019b858cbb763aad9940adcfe0490b0100a4c6be9a8be1ec65a3c24d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
flatCore-CMS Cross-Site Scripting Vulnerability (CNVD-2022-46172)
flatCore-CMS is a PHP and MySQL/SQLite based Web Content Management System CMS. flatCore-CMS version 2.0.9 is vulnerable to a cross-site scripting XSS vulnerability. An attacker could use this vulnerability to inject malicious JavaScript programs, steal cookies from other users, etc...