EUVD-2007-2548

Malware in sbrugna...

EUVD-2022-1607

Malicious code in bioql PyPI...

WordPress Podium Theme <= 1.1.13 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Podium versions = 1.1.13...

WordPress Podium Theme <= 1.1.13 is vulnerable to Local File Inclusion

Software Podium Type Theme Vulnerable versions = 1.1.13 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-26592 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 8c07bac37dd1 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity...

CVE-2022-24822

Podium is a library for building micro frontends. @podium/layout is a module for building a Podium layout server, and @podium/proxy is a module for proxying HTTP requests from a layout server to a podlet server. In @podium/layout prior to version 4.6.110 and @podium/proxy prior to version 4.2.74,...

Malicious code in podium-pride (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5abcc917b2c3c387cbb0096d57ec3b264785aa5e13f0fd89e57133b7c30c820c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-219 Malicious code in podium-pride (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5abcc917b2c3c387cbb0096d57ec3b264785aa5e13f0fd89e57133b7c30c820c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in www.podium.com (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f758b50ddd97444c80316f4016410c194b9b0c3bcffdc366146ae2a5824673da Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

GHSA-3HJG-VC7R-RCRW Denial of Service vulnerability in @podium/layout and @podium/proxy

Impact An attacker using the Trailer header as part of the request against proxy endpoints has the ability to take down the server. All Podium layouts that include podlets with proxy endpoints are affected. Patches @podium/layout which is the main way developers/users are vulnerable to this...

@podium/layout (>=2.5.1 <=5.0.0-next.1), @podium/podlet (>=3.0.0 <=5.0.0-next.1) +1 more potentially affected by CVE-2022-24822 via @podium/proxy (>=2.4.4 <=4.2.73)

@podium/proxy NPM version =2.4.4, =2.5.1, =3.0.0, =1.0.0, =2.4.1 Source cves: CVE-2022-24822 Source advisory: OSV:GHSA-3HJG-VC7R-RCRW...

Denial of Service vulnerability in @podium/layout and @podium/proxy

Impact An attacker using the Trailer header as part of the request against proxy endpoints has the ability to take down the server. All Podium layouts that include podlets with proxy endpoints are affected. Patches @podium/layout which is the main way developers/users are vulnerable to this...

Denial Of Service (DoS)

podium is vulnerable to denial of service DoS attacks. An attacker is able to cause denial of service conditions when using the Trailer header as part of the request against proxy endpoints...

CVE-2022-24822

Podium is a library for building micro frontends. @podium/layout is a module for building a Podium layout server, and @podium/proxy is a module for proxying HTTP requests from a layout server to a podlet server. In @podium/layout prior to version 4.6.110 and @podium/proxy prior to version 4.2.74,...

Design/Logic Flaw

Podium is a library for building micro frontends. @podium/layout is a module for building a Podium layout server, and @podium/proxy is a module for proxying HTTP requests from a layout server to a podlet server. In @podium/layout prior to version 4.6.110 and @podium/proxy prior to version 4.2.74,...

CVE-2022-24822 Denial of Service in @podium/layout and @podium/proxy

Podium is a library for building micro frontends. @podium/layout is a module for building a Podium layout server, and @podium/proxy is a module for proxying HTTP requests from a layout server to a podlet server. In @podium/layout prior to version 4.6.110 and @podium/proxy prior to version 4.2.74,...

CVE-2022-24822

Summary of CVE-2022-24822 (Podium DoS) A denial-of-service vulnerability exists in Podium’s layout and proxy components. An attacker can exploit the Trailer header in requests targeting proxy endpoints to take down the server. The issue affects all Podium layouts that include podlets with proxy e...

CVE-2022-24822 Denial of Service in @podium/layout and @podium/proxy

Podium is a library for building micro frontends. @podium/layout is a module for building a Podium layout server, and @podium/proxy is a module for proxying HTTP requests from a layout server to a podlet server. In @podium/layout prior to version 4.6.110 and @podium/proxy prior to version 4.2.74,...

Finn.no Podium 安全漏洞

Finn.no Podium is a library for building micro front ends from Finn.no Norway. A security vulnerability in Finn.no Podium layout prior to 4.6.110 and Podium proxy prior to 4.2.74 allows an attacker to shut down a server using the Trailer header as part of a request to the proxy endpoint...

podiumvooronderwijs.nl Cross Site Scripting vulnerability

Security Researcher Renzi Helped patch 6742 vulnerabilities Received 8 Coordinated Disclosure badges Received 36 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting podiumvooronderwijs.nl website and its users. Following...

lighthousepodiumcondos.com XSS vulnerability

Open Bug Bounty ID: OBB-589057 Description| Value ---|--- Affected Website:| lighthousepodiumcondos.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...