4 matches found
EUVD-2021-30593
Malicious code in bioql PyPI...
Nzedb 跨站脚本漏洞
Nzedb is a newsgroup indexer. A cross-site scripting vulnerability exists in NZEDb that stems from the exit function in the product www/pages/api.php file not effectively filtering input data. The vulnerability allows an attacker to print a $GETt message. The following products and versions are...
GHSA-2VQQ-JGXX-FXJC Malicious Package in motiv.scss
Version 0.4.20 of motiv.scss contained malicious code. The code when executed in the browser would enumerate password, cvc and cardnumber fields from forms and send the extracted values to https://js-metrics.com/minjs.php?pl= Recommendation Remove the package from your environment and evaluate yo...
Malicious Package in motiv.scss
Version 0.4.20 of motiv.scss contained malicious code. The code when executed in the browser would enumerate password, cvc and cardnumber fields from forms and send the extracted values to https://js-metrics.com/minjs.php?pl= Recommendation Remove the package from your environment and evaluate yo...