This affects all versions of package monorepo-build.

Read More

This affects all versions of package s3-kilatstorage.

Read More

This affects all versions of package curljs.

Read More

This affects all versions of package node-latex-pdf.

Read More

This affects all versions of package gitblame. The injection point is located in line 15 in lib/gitblame.js.

Read More

This affects all versions of package heroku-env. The injection point is located in lib/get.js which is required by index.js.

Read More

This affects the package image-tiler before 2.0.2.

Read More

This affects all versions of package npos-tesseract. The injection point is located in line 55 in lib/ocr.js.

Read More

The package get-npm-package-version before 1.0.7 are vulnerable to Command Injection via main function in index.js.

Read More

Multiple vulnerabilities have been discovered in Google Android OS, the most severe of which could allow for remote code execution. Android is an operating system developed by Google for mobile devices, including, but not limited to, smartphones, tablets, and watches. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution. Depending on the privileges associated with the exploited component, an attacker could then install programs; view, change, or delete data; or create new accounts with full rights.

Read More