EUVD-2015-9128

Malware in sbrugna...

CVE-2015-9288

The Unity Web Player plugin before 4.6.6f2 and 5.x before 5.0.3f2 allows attackers to read messages or access online services via a victim's credentials...

Malicious code in com.unity.modules.unitywebrequesttexture (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d0e54f4a9736ea22212cfa0acc6b8ce58d08a9a7f05e01e95cc44b600cc77a59 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2015-9288

The Unity Web Player plugin before 4.6.6f2 and 5.x before 5.0.3f2 allows attackers to read messages or access online services via a victim's credentials...

Command injection

The Unity Web Player plugin before 4.6.6f2 and 5.x before 5.0.3f2 allows attackers to read messages or access online services via a victim's credentials...

CVE-2015-9288

The Unity Web Player plugin before 4.6.6f2 and 5.x before 5.0.3f2 allows attackers to read messages or access online services via a victim's credentials...

CVE-2015-9288

CVE-2015-9288 affects the Unity Web Player plugin. Affected versions include the plugin prior to 4.6.6f2 and 5.x prior to 5.0.3f2. The vulnerability allows attackers to read messages or access online services using a victim’s credentials, implying credential-access leakage via the plugin. Connect...

Unity Web Player Zero-Day Vulnerability Disclosed

Some detail has been disclosed about a zero-day vulnerability in the Unity Web Player browser plugin that can allow an attacker to use a victim’s credentials to read messages or otherwise abuse their access to online services. The partial disclosure was made after nearly six months of bug-report...