3 matches found
CVE-2025-22146 Improper authentication on SAML SSO process allows user impersonation in sentry
Sentry is a developer-first error tracking and performance monitoring tool. A critical vulnerability was discovered in the SAML SSO implementation of Sentry. It was reported to us via our private bug bounty program. The vulnerability allows an attacker to take over any user account by using a...
Malicious code in private-bug-bounty (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a00733ed27d2b66f512559495dc079196948c176ea93c337042bed009427afc4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-12025 Malicious code in private-bug-bounty-secret (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f3a55444761df525e7428c98e6dd9a390a1cf5cfea4a7485f768da73a2067df6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...