178 matches found
Malicious code in @euqns/nudge-mcp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b1e494fee8148b95f98e5de04cc4ecd78ed793ff2d019ae672e2b22d2debc3b The package ships dist/setup.js which performs HTTP POST requests at install time to a hardcoded external endpoint at...
📄 Omega-PSIR Cross Site Scripting
Omega-PSIR suffers from a cross site scripting vulnerability via the lang parameter. CVE-2026-1434: Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a... Overview | Field | Details | |---|---| | CVE ID | CVE-2026-1434 | | Severity | MEDIUM | | Advisory | N/A...
Exploit for Cross-site Scripting in Pw Omega-Psir
CVE-2026-1434: Omega-PSIR is vulnerable to Reflected XSS via t...
Investing in the people shaping open source and securing the future together
Open source has always been about community. It's about maintainers who review pull requests late at night. Volunteers who respond to security reports from strangers. And communities that quietly power the world's software. The reality behind the commits is that maintainers get stretched thin. Th...
CVE-2026-1434
Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a malicious URL that, when opened, causes arbitrary JavaScript to execute in the victim’s browser. This issue was fixed in 4.6.7...
EUVD-2026-9021
Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a malicious URL that, when opened, causes arbitrary JavaScript to execute in the victim’s browser. This issue was fixed in 4.6.7...
CVE-2026-1434
Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a malicious URL that, when opened, causes arbitrary JavaScript to execute in the victim’s browser. This issue was fixed in 4.6.7...
CVE-2026-1434 Reflected XSS in Omega-PSIR
Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a malicious URL that, when opened, causes arbitrary JavaScript to execute in the victim’s browser. This issue was fixed in 4.6.7...
CVE-2026-1434
Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a malicious URL that, when opened, causes arbitrary JavaScript to execute in the victim’s browser. This issue was fixed in 4.6.7...
CVE-2026-1434 Reflected XSS in Omega-PSIR
Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a malicious URL that, when opened, causes arbitrary JavaScript to execute in the victim’s browser. This issue was fixed in 4.6.7...
CVE-2026-1434
Omega-PSIR is affected by a Reflected XSS vulnerability in the lang parameter. An attacker can craft a malicious URL that, when opened by a user, causes arbitrary JavaScript to execute in the victim’s browser. The issue has a fixed version: 4.6.7. The CVSS data indicates Network attack vector, lo...
Omega-PSIR 跨站脚本漏洞
Omega-PSIR is a comprehensive scientific information management system operated by Politechnika Warszawska. Omega-PSIR has a cross-site scripting vulnerability, which stems from the reflective cross-site scripting present in the lang parameter. This vulnerability could allow attackers to execute...
CVE-2025-59379
The Red Hat/CIRCL/NVD entries confirm a flaw in DwyerOmega Isensix Advanced Remote Monitoring System (ARMS) 1.5.7 where Blind SQL Injection via the login page's user parameter can disclose credentials from the underlying SQL database. Affected component: ARMS login input handling; root cause: bli...
EUVD-2025-180001
Malicious code in boolean-zeta-fire-omega-lambda npm...
EUVD-2025-179321
Malicious code in deploy-thread-scale-omega-enum npm...
EUVD-2025-180206
Malicious code in authorize-omega-earth-abstract-assert npm...
EUVD-2025-175750
Malicious code in user-lambda-decompress-benchmark-omega npm...
EUVD-2025-180173
Malicious code in awk-sun-deploy-key-omega npm...
EUVD-2025-178445
Malicious code in import-omega-long-cloud-gamma npm...
EUVD-2025-177048
Malicious code in private-enum-compress-upsilon-omega npm...