3 matches found
CVE-2026-59148
The CVE covers Mockoon prior to version 9.7.0, where the admin API was mounted on the same Express listener as user mock routes with default-enabled, unauthenticated access and permissive CORS (Access-Control-Allow-Origin: ). This allowed any unauthenticated client on the mock server port to: rea...
EUVD-2020-4804
Malware in sbrugna...
EUVD-2025-25340
Malicious code in bioql PyPI...