11 matches found
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a credential-stealing payload and worm propagation logic. A malicious actor associated with the "TeamPCP" or "Mini Shai-Hulud" campaign compromised a maintainer's access token; this allowed the...
Unfixed XSS vulnerability at www.sps.edu
Security researcher PhysX, has submitted on 12/03/2008 a cross-site-scripting XSS vulnerability affecting www.sps.edu, which at the time of submission ranked 194232 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/03/2008. It is currently...
Unfixed XSS vulnerability at www.nsaspeaker.org
Security researcher PhysX, has submitted on 12/03/2008 a cross-site-scripting XSS vulnerability affecting www.nsaspeaker.org, which at the time of submission ranked 362782 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/04/2008. It is...
Unfixed XSS vulnerability at searchlink.syr.interealty.com
Security researcher PhysX, has submitted on 11/03/2008 a cross-site-scripting XSS vulnerability affecting searchlink.syr.interealty.com, which at the time of submission ranked 267519 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/03/2008. I...
Unfixed XSS vulnerability at www.mlsstratus.com
Security researcher PhysX, has submitted on 11/03/2008 a cross-site-scripting XSS vulnerability affecting www.mlsstratus.com, which at the time of submission ranked 71893 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/04/2008. It is current...
Unfixed XSS vulnerability at www.century21.com
Security researcher PhysX, has submitted on 11/03/2008 a cross-site-scripting XSS vulnerability affecting www.century21.com, which at the time of submission ranked 10563 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 23/04/2008. It is currentl...
Unfixed XSS vulnerability at www.carstereo.com
Security researcher PhysX, has submitted on 24/05/2008 a cross-site-scripting XSS vulnerability affecting www.carstereo.com, which at the time of submission ranked 126084 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/11/2008. It is current...
Unfixed XSS vulnerability at apps.devry.edu
Security researcher PhysX, has submitted on 24/03/2008 a cross-site-scripting XSS vulnerability affecting apps.devry.edu, which at the time of submission ranked 20570 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 18/04/2008. It is currently...
Unfixed XSS vulnerability at www4.eboard.com
Security researcher PhysX, has submitted on 18/03/2008 a cross-site-scripting XSS vulnerability affecting www4.eboard.com, which at the time of submission ranked 60256 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/04/2008. It is currently...
Unfixed XSS vulnerability at hartford.2.homescape.com
Security researcher PhysX, has submitted on 16/03/2008 a cross-site-scripting XSS vulnerability affecting hartford.2.homescape.com, which at the time of submission ranked 15868 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 26/05/2008. It is...
Unfixed XSS vulnerability at www.techforless.com
Security researcher PhysX, has submitted on 01/06/2008 a cross-site-scripting XSS vulnerability affecting www.techforless.com, which at the time of submission ranked 37040 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 09/07/2008. It is...