2 matches found
Malicious code in lightweight-store (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c9ffe60e0945106204ad59c780f309329d5965654dd8e82c8da2a847c93e08fb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
PT-2024-13394 · Contribsys · Sidekiq
Name of the Vulnerable Software and Affected Versions: Contribsys Sidekiq version 6.5.8 Description: The issue allows a remote attacker to obtain sensitive information via a crafted payload to the uniquejobs function. This is a Cross Site Scripting vulnerability. Recommendations: For Contribsys...