Malicious code in vscode-ps1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 89a6b0c5359c6999b0721fc722f11353dd05b6e52a6795c5da8174e0a353fa54 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

nodejs:18 security update

nodejs 1:18.20.2-2 - Removes .ps1 files - Rebase to 18.20.2 - Fixes: CVE-2024-27983, CVE-2024-28182, CVE-2024-27982, CVE-2024-25629 nodejs-nodemon nodejs-packaging...

nodejs:18 security update

nodejs 1:18.20.2-1 - Removes .ps1 files - Rebase to 18.20.2 - Fixes: CVE-2024-27983, CVE-2024-28182, CVE-2024-27982, CVE-2024-25629 nodejs-nodemon nodejs-packaging...

Ian Dunn: Double evaluation in .bash_prompt of dotfiles allows a malicious repository to execute arbitrary commands

Summary Due to the improper usage of the PS1 environment variable in .bashprompt of dotfiles, a malicious repository can execute arbitrary commands when changed the current directory to it. Description The PS1 environment variable of bash supports command substitutions. For example, setting PS1 t...

ps1.kr Cross Site Scripting vulnerability OBB-2867016

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Rockwell Automation 160-Preset Speed v4.xx DN1 v1.2 Standard 160-PS1 AC Drive

Binary data 752224.prm...

Rockwell Automation 160-Preset Speed v4.xx DN1 v2.0 Standard 160-PS1 AC Drive

Binary data 752254.prm...

Design/Logic Flaw

contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize branch names in the PS1 variable, allowing a malicious repository to cause code execution...

CVE-2014-9938

contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize branch names in the PS1 variable, allowing a malicious repository to cause code execution...

DEBIAN-CVE-2014-9938

contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize branch names in the PS1 variable, allowing a malicious repository to cause code execution...

CVE-2014-9938

contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize branch names in the PS1 variable, allowing a malicious repository to cause code execution...

CVE-2014-9938

contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize branch names in the PS1 variable, allowing a malicious repository to cause code execution...

CVE-1999-1048

CVE-1999-1048 affects Bash versions including 2.0.0 and 1.4.17, where a buffer overflow can be triggered by an extremely large directory name. The vulnerability is exploited via the PS1 prompt (\w) when another user changes into that directory, enabling local privilege escalation. The provided do...