Malicious code in @com.att.dtventertainment/dfw-pm-yo-space-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 806161588999d1c3f730dfe7672f8123c0cd3b6e2b28c00a6463f91ced635766 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-39261

In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions...

SolidUI 安全漏洞

SolidUI is an AI-generated graphics software open-sourced by CloudOrc in China. A security vulnerability exists in SolidUI version 0.4.0, which stems from the fact that spaceplugin/app.py leaks OpenAI keys...

CVE-2024-24941

In JetBrains IntelliJ IDEA before 2023.3.3 a plugin for JetBrains Space was able to send an authentication token to an inappropriate URL...

JetBrains IntelliJ IDEA < 2023.2 Execution with Unnecessary Privileges (macOS)

The version of JetBrains IntelliJ IDEA installed on the remote macOS host is prior to 2023.2 It is, therefore, affected by an execution with unnecessary privileges vulnerability, due to the bundled Space plugin requesting excessive permissions. An authenticated, local attacker could exploit this...

CVE-2023-39261

In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions...

CVE-2023-39261

In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions...

Code injection

In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions...

JetBrains IntelliJ IDEA 安全漏洞

JetBrains IntelliJ IDEA is a set of integrated development environments for the Java language from the Czech company JetBrains. A security vulnerability exists in JetBrains IntelliJ IDEA versions prior to 2023.2, which stems from an issue with the Space plugin requesting too many permissions...

WordPress Citizen Space Plugin Cross-Site Scripting Vulnerability

WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress Citizen Space plugin, which allows remote attackers to exploit the vulnerability to inject malicious...