2 matches found
CVE-2026-49969
Laravel-Mediable before 7.0.0 contains a server-side request forgery vulnerability that allows remote attackers to issue arbitrary HTTP requests from the server by supplying unvalidated caller-controlled URLs to endpoints backed by MediaUploader::fromSource. Attackers can craft URLs targeting...
Malicious code in graphite_remote_adapter (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dd2aa60f9c1fac3dfab372dff47188b2dc4b3f4d2b874b811d20db7a47faca1a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...