6 matches found
Malicious code in @bank-widgets/whats-new (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83244f927bab36b8e6f6493e932fea1ed017f30aaf286c82a81990f509589934 The package @bank-widgets/whats-new was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-3335 Malicious code in @bank-widgets/whats-new (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83244f927bab36b8e6f6493e932fea1ed017f30aaf286c82a81990f509589934 The package @bank-widgets/whats-new was found to contain malicious code. Source: ossf-package-analysis...
CVE-2024-32548
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Hideki Tanaka What's New Generator allows Stored XSS.This issue affects What's New Generator: from n/a through 2.0.2...
WordPress What's New Generator plugin <= 2.0.2 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by CatFather Patchstack Alliance in WordPress Plugin What's New Generator versions = 2.0.2...
CVE-2019-11450
whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection...
Security update 1970-01-01
...