5 matches found
MAL-2023-8043 Malicious code in @grabdefence/trust-feature-bank-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cfec11e2fa47a7b42d7e359d1dc08305ca989ded929ed38507f02f3d74df3a93 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @grabdefence/trust-feature-bank-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cfec11e2fa47a7b42d7e359d1dc08305ca989ded929ed38507f02f3d74df3a93 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
snyk Code Injection vulnerability
The package snyk before 1.1064.0 is vulnerable to Code Injection when analyzing a project. An attacker who can convince a user to scan a malicious project can include commands in a build file such as build.gradle or gradle-wrapper.jar, which will be executed with the privileges of the application...
CVE-2022-24441
The package snyk before 1.1064.0 are vulnerable to Code Injection when analyzing a project. An attacker who can convince a user to scan a malicious project can include commands in a build file such as build.gradle or gradle-wrapper.jar, which will be executed with the privileges of the applicatio...
Code injection
The package snyk before 1.1064.0 are vulnerable to Code Injection when analyzing a project. An attacker who can convince a user to scan a malicious project can include commands in a build file such as build.gradle or gradle-wrapper.jar, which will be executed with the privileges of the applicatio...