4 matches found
Malicious code in token-me-uk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a058b653e7a491fdf0c9128b4d2d408c2cdac6a1784adc5f02a0975a0e669eb The CLI in cli.mjs reads its API key from process.env.TOKENMEUKAPIKEY, falling back to process.env.OPENAIAPIKEY and then process.env.ANTHROPICAPIKEY...
EUVD-2024-48593
Malicious code in bioql PyPI...
CVE-2024-7713
The AI ChatBot with ChatGPT and Content Generator by AYS WordPress plugin before 2.1.0 discloses the Open AI API Key, allowing unauthenticated users to obtain it...
CVE-2024-7713
CVE-2024-7713 affects the WordPress plugin “AI ChatBot with ChatGPT and Content Generator by AYS” (versions before 2.1.0). The vulnerability allows unauthenticated users to disclose the OpenAI API Key, exposing sensitive credentials and potentially enabling misuse of the API key. Multiple connect...