14 matches found
Malicious code in angular-webpart (npm)
The package angular-webpart was found to contain malicious code...
MAL-2025-14533 Malicious code in angular-webpart (npm)
The package angular-webpart was found to contain malicious code...
Exploit for Improper Access Control in Microsoft
CVE-2023-21742 PoC Attention: It's only a PoC to leak the...
Malicious code in teams-calendar-webpart (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4407eeb60493ba69d7ef590b289a23d09231c321ce9840fe680bc0a0709be8a4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-848 Malicious code in teams-calendar-webpart (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4407eeb60493ba69d7ef590b289a23d09231c321ce9840fe680bc0a0709be8a4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview teams-calendar-webpart is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...
@camptocamp/closure-util (>=1.23.0 <=1.27.0), @cognigy/wndb-with-exceptions (>=3.0.1 <=3.0.3) +97 more potentially affected by CVE-2021-32803 via tar (>=3.0.0 <=3.1.5)
tar NPM version =3.0.0, =1.23.0, =3.0.1, =1.36.0, =0.0.1, =1.0.0, =3.0.14, =4.0.0, =1.4.0, =1.4.0, =1.4.0, =1.4.1 and more Source cves: CVE-2021-32803 Source advisory: OSV:GHSA-R628-MHMH-QJHW...
Microsoft SharePoint WebPart Interpretation Conflict Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of server-side controls in WebParts. By specifying a control using a...
“Cannot change WebPart ExportMode to ‘All’. WebPart will be skipped” - Warning When Performing Backup of SharePoint Sites
Article Applicability This article is regarding an error that occurs only in Veeam Backup for Microsoft 365 build 8.05.20 and earlier. Starting in Veeam Backup for Microsoft 365 8.1 build 8.1.0.305, Classic Web Parts in Microsoft 365 organizations can be protected using modern app-only...
Microsoft SharePoint Security Feature Bypass Vulnerability
Microsoft Office is an office software suite based on the Windows operating system. A security feature bypass vulnerability exists in Microsoft SharePoint, which can be exploited by remote attackers to bypass target ACP restrictions and conduct XSS attacks by modifying the webpart...
Microsoft SharePoint Security Bypass Vulnerability
Microsoft Office is an office software suite based on the Windows operating system. A security feature bypass vulnerability exists in Microsoft SharePoint, which can be exploited by remote attackers to bypass target ACP restrictions and conduct XSS attacks by modifying the webpart...
CVE-2016-0011
Microsoft SharePoint Server 2013 SP1 and SharePoint Foundation 2013 SP1 allow remote authenticated users to bypass intended Access Control Policy restrictions and conduct cross-site scripting XSS attacks by modifying a webpart, aka "Microsoft SharePoint Security Feature Bypass," a different...
CVE-2015-6117
Microsoft SharePoint Server 2013 SP1 and SharePoint Foundation 2013 SP1 allow remote authenticated users to bypass intended Access Control Policy restrictions and conduct cross-site scripting XSS attacks by modifying a webpart, aka "Microsoft SharePoint Security Feature Bypass," a different...
Security feature bypass
Microsoft SharePoint Server 2013 SP1 and SharePoint Foundation 2013 SP1 allow remote authenticated users to bypass intended Access Control Policy restrictions and conduct cross-site scripting XSS attacks by modifying a webpart, aka "Microsoft SharePoint Security Feature Bypass," a different...