40 matches found
XVIDEOS: Open redirect
Summary: An open redirect vulnerability was discovered on the website https://www.xnxx.com/todays-selection/1. This issue allows attackers to modify URLs to redirect users to arbitrary external websites, including malicious or phishing sites. The vulnerability can be exploited by manipulating...
XVIDEOS: Self-XSS on Suggest Tag dialog box
Summary: Stored cross-site scripting arises when an application receives data from an untrusted source and includes that data within its later HTTP responses in an unsafe way. vulnerable URL : https://www.xvideos.com/video57921571/friendb.ifd. Vulnerability Description : Application have a add ta...
MAL-2022-742 Malicious code in @xvideos/anonymizer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1fcde639cf2cd959685a83f2737d06adacf838b4f2cc52efaf15d947acb63acb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-743 Malicious code in @xvideos/api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 43660a56a32bf3d889c26e06612d108e294d4df2313fb14049cd4f2ee17c9bff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-740 Malicious code in @xvideos/alerts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c061d5e1a55765237e7baca0a70ba9bc4774b435c13e7963452bb8f07966542e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-741 Malicious code in @xvideos/analytics (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f44627558c106d7a55ec31c3422e2d6b79a26dc15fcb4c421df5cd2274511509 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-746 Malicious code in @xvideos/apps (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1dc1d32a11b195ccd2b9793e68f33bccf46835e1b15a5d8c26b4bd8aac4c00c4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-748 Malicious code in @xvideos/auth-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a93bb22648b5540c11735a8901b86f8e243ebb4237cabf6d929d18bb2c3ba806 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-744 Malicious code in @xvideos/app (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f7182d0cbdc9c698182710a478644250f1696e59d6ce50b4ce85cdd834d6a6b3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-745 Malicious code in @xvideos/app-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a290ede58fb80e2b89f5ecbce9b539c5c5de67e3d8a2ab54c2a6feb09e67973f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-751 Malicious code in @xvideos/backend (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61f8c342e04777317c0bb4876d54d29c4a66eff3c9af20f51a255ba2ede3f7eb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-752 Malicious code in @xvideos/base (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1f9234980d76df4bbc89d4d3b833919cca785dd66b6cc20a37ccfd30d81bad29 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-750 Malicious code in @xvideos/azure (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d95eadb2f1780abf83a070894a217962a9582c28505e104021ff5af252a6419b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-749 Malicious code in @xvideos/aws (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25da6fe619fd48c8ada52eae4f93092e0b83b86bd9ef37fe9a0fcb45b51e5d14 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-753 Malicious code in @xvideos/build (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0c286338d5d80cf1dee15892fe90f8add43a1a0667731869b3c8fb59c3767803 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-756 Malicious code in @xvideos/client-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e4451e20161f4c1a7380cb7af0a16c798b0a7f7d4297e58a34b5cf0d14a3b8ea Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-755 Malicious code in @xvideos/client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2389abd60111e646960b152f474f3169766b93af804b970bc38c4fb29c36cdc5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-757 Malicious code in @xvideos/common (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 36e7424e18d80ad4052b4df84fcc713d2fc12940c243f1ca9944bc5dd1f2c903 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-759 Malicious code in @xvideos/core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5cb2e85674b4259bde3ad80ad25eac9120b2040787247294638ae89bac3dcd6e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-764 Malicious code in @xvideos/frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e27184bebc230db1cf7ff92e243c7e794e996071e39442589532e189c41fa55 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...