Lucene search
K

10 matches found

Snyk
Snyk
added 2026/03/07 2:37 a.m.3 views

Improper Authentication

Overview Affected versions of this package are vulnerable to Improper Authentication in facilitator payment processing on Solana. An attacker can interfere with or manipulate payment transactions by exploiting a race condition. Remediation Upgrade...

6CVSS5.8AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:42 a.m.8 views

CVE-2022-26102

Due to missing authorization check, SAP NetWeaver Application Server for ABAP - versions 700, 701, 702, 731, allows an authenticated attacker, to access content on the start screen of any transaction that is available with in the same SAP system even if he/she isn't authorized for that transactio...

5.5CVSS6.4AI score0.00485EPSS
Exploits0References1
Snyk
Snyk
added 2025/09/11 2:24 p.m.1 views

Embedded Malicious Code

Overview prebid-universal-creative is a javascript api to render multiple formats. This file is inserted into the prebid creative as a placeholder for the winning prebid creative. Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious...

9.8CVSS6.8AI score0.00312EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/09 8:45 p.m.1 views

Embedded Malicious Code

Overview @duckdb/node-bindings is a Node bindings to the DuckDB C API. Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected...

9.8CVSS6.8AI score0.00349EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.4 views

Embedded Malicious Code

Overview prebid.js is an open source software that is offered for free as a convenience. While it is designed to help companies address legal requirements associated with header bidding, we cannot and do not warrant that your use of Prebid.js will satisfy legal requirements. Affected versions of...

9.8CVSS7AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.2 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present...

9.8CVSS7.1AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.1 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present...

9.8CVSS7.1AI score
Exploits0References2
Cvelist
Cvelist
added 2024/09/19 6:18 a.m.26 views

CVE-2024-47089 Unauthorized Transaction Manipulation Vulnerability

This vulnerability exists in the Apex Softcell LD Geo due to improper validation of the transaction token ID in the API endpoint. An authenticated remote attacker could exploit this vulnerability by manipulating the transaction token ID in the API request leading to unauthorized access and...

8.7CVSS0.00227EPSS
Exploits0References1
CVE
CVE
added 2024/09/19 6:18 a.m.90 views

CVE-2024-47089

Affected software: Apex Softcell LD Geo. Vulnerability: Improper validation of the transaction token ID in the API endpoint, enabling an authenticated remote attacker to manipulate the token ID and access/modify transactions belonging to other users. Impact: Unauthorized access and modification o...

8.7CVSS6.4AI score0.00227EPSS
Exploits0References1Affected Software1
Code423n4
Code423n4
added 2023/07/13 12:0 a.m.5 views

propose function Can lead to unexpected behavior

Lines of code Vulnerability details Impact Problème in the propose function, specifically in the construction of the targets, values, signatures, and calldatas arrays. These arrays are used to define the transactions that will be executed within the proposal, So the problem arises from the use of...

7.6AI score
Exploits0
Rows per page
Query Builder