16 matches found
CVE-2026-7588
A vulnerability was found in ggerve coding-standards-mcp. This issue affects the function getstyleguide/getbestpractices of the file server.py. The manipulation of the argument Language results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and...
CVE-2026-7588
Summary (CVE-2026-7588) : In the ggerve coding-standards-mcp project, the vulnerability affects the get_style_guide/get_best_practices function in server.py. The issue arises from manipulating the Language argument, which enables a path traversal condition. This can be exploited remotely over a n...
EUVD-2026-26704
A vulnerability was found in ggerve coding-standards-mcp. This issue affects the function getstyleguide/getbestpractices of the file server.py. The manipulation of the argument Language results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and...
CVE-2026-7588
A vulnerability was found in ggerve coding-standards-mcp. This issue affects the function getstyleguide/getbestpractices of the file server.py. The manipulation of the argument Language results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and...
Coding Standards MCP Server 路径遍历漏洞
Coding Standards MCP Server is a coding specifications and best practices query tool for gerve individual developers. A path traversal vulnerability exists in Coding Standards MCP Server, which stems from a misbehavior of the getstyleguide/getbestpractices function with the parameter Language in...
Malicious code in ledvance-living-style-guide (npm)
The package ledvance-living-style-guide was found to contain malicious code...
MAL-2025-25073 Malicious code in ledvance-living-style-guide (npm)
The package ledvance-living-style-guide was found to contain malicious code...
Malicious code in bitshares-ui-style-guide (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 429c86abce3dc07c32dc57d2f69b0a211675f08c5f2043d0ea8d67210c004995 The OpenSSF Package Analysis project identified 'bitshares-ui-style-guide' @ 1.0.3 npm as malicious. It is considered malicious because: - The...
Malicious code in style-guide-microsite (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e1e85921014d38943fdb2a3836e1e57072159de15ce4b595e1e421448b275194 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview ruby-style-guide is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...
MAL-2022-1234 Malicious code in azure-api-style-guide (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 257d088a2c56246e87ea0068e7e5ffa617d5f06a13dac71c7aca131ab34dcf04 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ruby-style-guide (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 89cf2431bf1e33c39071abae67176324ffcd08f4b09f2abacaac469dd4c41f4c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5861 Malicious code in ruby-style-guide (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 89cf2431bf1e33c39071abae67176324ffcd08f4b09f2abacaac469dd4c41f4c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Reko - A General Purpose Binary Decompiler
Reko Swedish: "decent, obliging" is a C project containing a decompiler for machine code binaries. This project is freely available under the GNU General Public License. The project consists of front ends, core decompiler engine, and back ends to help it achieve its goals. A command-line, a Windo...
Rubocop - A Ruby Static Code Analyzer, Based On The Community Ruby Style Guide
RuboCop is a Ruby static code analyzer. Out of the box it will enforce many of the guidelines outlined in the community Ruby Style Guide . Most aspects of its behavior can be tweaked via various configuration options. Installation RuboCop 's installation is pretty standard: $ gem install rubocop ...
HackerOne: Minor Bug: Public un-compiled CSS with original sass, versioning, source map, comments, etc.
A stylesheet is available in a non-minified, non-compiled format. It includes sass, versioning, a source map, a style guide, comments, etc. see base64 encoded string at the very end of the document. https://hackerone.com/assets/application.css This alone is obviously not an exploit. However, it c...