2 matches found
Malicious code in @loybung/weatherapi (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 90a45282e3a6e0548742dd05cd29a7be7c936a1f4828f697af9a092acc90f2cb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
weatherapi.com Cross Site Scripting vulnerability OBB-3953209
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...