Description

This affects all versions of package macfromip. The injection point is located in line 66 in macfromip.js.

Remediation

References

https://snyk.io/vuln/SNYK-JS-MACFROMIP-1048336

https://www.npmjs.com/package/macfromip

Related Vulnerabilities

CVE-2023-34620 Vulnerability in maven package org.hjson:hjson

CVE-2016-5004 Vulnerability in maven package org.apache.xmlrpc:xmlrpc

CVE-2019-10752 Vulnerability in npm package sequelize

CVE-2023-50732 Vulnerability in maven package org.xwiki.platform:xwiki-platform-index-tree-macro

CVE-2020-2258 Vulnerability in maven package org.jenkins-ci.plugins:cloudbees-jenkins-advisor

Severity

Critical

Classification

CWE-78

Tags

Exploit Third Party Advisory Product