GSD-2022-1000072
- Source
- https://data.gsd.id/GSD-2022-1000072
- Import Source
- https://github.com/cloudsecurityalliance/gsd-database/blob/main/2022/1000xxx/GSD-2022-1000072.json
- JSON Data
- https://api.osv.dev/v1/vulns/GSD-2022-1000072
- Withdrawn
- 2023-03-14T07:04:18.327358Z
- Published
- 2022-02-02T18:47:52.318148Z
- Modified
- 2023-03-14T07:04:18.327358Z
- Summary
- Backdoor in PyPi xss package version all
- Details
-
In the PyPi xss package there is malicious code that appears to be stealing Discord tokens allowing it to access Discord as that user.
- References