Monthly Archive: June 2018

nodeffmpeg was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/508

ffmepg was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/507

node-opencv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/506

opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/505

openssl.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/504

node-openssl was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/503

node-opensl was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/502

babelcli was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/499

mssql-node was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/480

gruntcli was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/498

nodemssql was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/484

mssql.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. Date published : 2018-06-06 https://nodesecurity.io/advisories/485

IBM Security Access Manager Appliance 8.0.0 through 8.0.1.6, and 9.0.0 through 9.0.3.1 stores potentially sensitive information in log files that could be read by a remote user. IBM X-Force ID: 128617. Date published :...

IBM Security Access Manager Appliance 7.0.0, 8.0.0 through 8.0.1.6, and 9.0.0 through 9.0.3.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An...