Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Prebid.js NPM package briefly compromised
Vulnerability Description
Prebid.js is a free and open source library for publishers to quickly implement header bidding. NPM users of prebid 10.9.2 may have been briefly compromised by a malware campaign. The malicious code attempts to redirect crypto transactions on the site to the attackers' wallet. Version 10.10.0 fixes the issue. As a workaround, it is also possible to downgrade to 10.9.1.
CVSS Information
N/A
Vulnerability Type
内嵌的恶意代码
Vulnerability Title
Prebid.js 安全漏洞
Vulnerability Description
Prebid.js是Prebid开源的一个设置和管理标题竞价广告合作软件。 Prebid.js 10.9.2版本存在安全漏洞,该漏洞源于npm包被植入恶意代码,可能重定向加密货币交易。
CVSS Information
N/A
Vulnerability Type
N/A