Lucene search
K

257 matches found

Snyk
Snyk
added 2020/04/17 12:0 a.m.1 views

Malicious Package

Overview telegram-meetupbot is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS6.9AI score
Exploits0References2
Snyk
Snyk
added 2020/04/17 12:0 a.m.2 views

Malicious Package

Overview fontawesome-sass-mixins is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS6.9AI score
Exploits0References2
Snyk
Snyk
added 2020/04/17 12:0 a.m.1 views

Malicious Package

Overview a14z6ch-elapsed-days is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS6.9AI score
Exploits0References2
Snyk
Snyk
added 2020/04/17 12:0 a.m.2 views

Malicious Package

Overview arproxy-plugin-mysql-casuallog is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid...

8CVSS5.5AI score
Exploits0References2
Snyk
Snyk
added 2020/04/17 12:0 a.m.3 views

Malicious Package

Overview activeprofiling is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS5.5AI score
Exploits0References2
Snyk
Snyk
added 2020/04/17 12:0 a.m.1 views

Malicious Package

Overview action-subscriber is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS6.9AI score
Exploits0References2
Snyk
Snyk
added 2020/04/17 12:0 a.m.2 views

Malicious Package

Overview capistrano3drupal is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS6.9AI score
Exploits0References2
Snyk
Snyk
added 2020/04/17 12:0 a.m.1 views

Malicious Package

Overview administrate-field-belongs-tosearch is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avo...

8CVSS6.9AI score
Exploits0References2
Snyk
Snyk
added 2020/04/17 12:0 a.m.1 views

Malicious Package

Overview a1630ty-a1630ty is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS6.9AI score
Exploits0References2
Snyk
Snyk
added 2020/04/17 12:0 a.m.1 views

Malicious Package

Overview alacrity-client is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS6.9AI score
Exploits0References2
Snyk
Snyk
added 2020/04/17 12:0 a.m.1 views

Malicious Package

Overview font-assets is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using font-assets...

8CVSS5.5AI score
Exploits0References2
Akamai Blog
Akamai Blog
added 2020/01/24 7:0 p.m.58 views

Protecting Websites from Magecart and Other In-Browser Threats

The Rise of Third-Party Scripts Modern web applications have become increasingly reliant on external code, services and vendors that execute JavaScript code in the browser... often referred to as third-party scripts. As a close-to-home example shown below, Akamai executes dozens of scripts to...

7.8AI score
Exploits0
ThreatPost
ThreatPost
added 2019/11/14 3:18 p.m.122 views

Website, Know Thyself: What Code Are You Serving?

When we think of “securing our website” from attackers, we often think of securing against hooded figures somewhere in Eastern Europe working out of a smoky office above an illegal gambling den. Not only is that probably geographically insensitive, it’s also not necessarily the best way threat to...

8.6AI score0.0552EPSS
Exploits1References12
ThreatPost
ThreatPost
added 2019/08/15 4:16 p.m.84 views

Clickjacking Evolves to Hook Millions of Top-Site Visitors

Clickjacking, where links on a website redirect unknowing users to spam, advertising or malware, has been around for decades. However, new tactics that defy the best mitigation efforts of browsers has led to it affecting millions of internet users browsing the web’s top sites, researchers found i...

7.5AI score
Exploits0References10
Akamai Blog
Akamai Blog
added 2018/10/10 10:0 a.m.42 views

Find AND Fix First- and Third-Party Issues with the Power of Real Data and Adaptive Performance

It's been well established that there is a correlation between fast digital experiences and positive business results. What users experience on a site has a direct bearing on their engagement and buying behaviour and consequently the overall success of the business. Slow page load times can lead ...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2018/01/01 11:53 p.m.18 views

Flaw In Major Browsers Allows 3rd-Party Scripts to Steal Your Saved Passwords

Security researchers have uncovered how marketing companies have started exploiting an 11-year-old bug in browsers' built-in password managers, which allow them to secretly steal your email address for targeted advertising across different browsers and devices. The major concern is that the same...

6.6AI score
Exploits0
Packet Storm
Packet Storm
added 2009/05/27 12:0 a.m.47 views

AMember 3.1.7 XSS / SQL Injection

AMember - Multiple Vulnerabilities Version Affected: 3.1.7 Apr-10-2009 newest Info: aMember is a flexible membership and subscription management PHP script. It has support for PayPal, BeanStream, 2Checkout, NoChex, VeriSign PayFlow, Authorize.Net, PaySystems, Probilling, Multicards, E-Gold and...

0.4AI score
Exploits0
Rows per page
Query Builder