5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
5.3AI Score
It was discovered that matio incorrectly handled certain malformed files. An attacker could possibly use this issue to cause a denial of...
5.5CVSS
5.5AI Score
0.001EPSS
A path traversal vulnerability in mintplex-labs/anything-llm allowed a manager to bypass the normalizePath() function, intended to defend against path traversal attacks. This vulnerability enables the manager to read, delete, or overwrite the 'anythingllm.db' database file and other files stored...
9.1CVSS
7AI Score
0.0004EPSS
7.2AI Score
It was discovered that libndp incorrectly handled certain malformed IPv6 router advertisement packets. A local attacker could use this issue to cause NetworkManager to crash, resulting in a denial of service, or possibly execute arbitrary...
7.4CVSS
7.3AI Score
0.0004EPSS
Lessons from the Snowflake Breaches
Last week, the notorious hacker gang, ShinyHunters, sent shockwaves across the globe by allegedly plundering 1.3 terabytes of data from 560 million users. This colossal breach, with a price tag of $500,000, could expose the personal information of a massive swath of a live event company's...
7.4AI Score
Black Basta Ransomware May Have Exploited MS Windows Zero-Day Flaw
Threat actors linked to the Black Basta ransomware may have exploited a recently disclosed privilege escalation flaw in the Microsoft Windows Error Reporting Service as a zero-day, according to new findings from Symantec. The security flaw in question is CVE-2024-26169 (CVSS score: 7.8), an...
7.8CVSS
7.1AI Score
0.001EPSS
Using AI for Political Polling
Public polling is a critical function of modern political campaigns and movements, but it isn't what it once was. Recent US election cycles have produced copious postmortems explaining both the successes and the flaws of public polling. There are two main reasons polling fails. First, nonresponse.....
6.5AI Score
Malicious code in ing-feat-lu-luxtrust-smartcard-authentication (npm)
-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (e101f8c803c8ca5e2fddab02abc82d9de8ce89fd23fb6f52bc2fd31a73c0fa01) The OpenSSF Package Analysis project identified 'ing-feat-lu-luxtrust-smartcard-authentication' @ 200.0.1 (npm) as malicious. It is considered...
7.3AI Score
Malicious code in ing-feat-lu-luxtrust-token-authentication (npm)
-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (5d7c8b06f4e363cde4609c5bb2971268a310ec0ec691464f7c1159191f308b8c) The OpenSSF Package Analysis project identified 'ing-feat-lu-luxtrust-token-authentication' @ 200.0.1 (npm) as malicious. It is considered...
7.3AI Score
Malicious code in ing-feat-lu-luxtrust-stick-authentication (npm)
-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (1e84b6fcb318d2b4cf4fc650d67ffb94a0622eb47d6b88e8662bdb6b2dc62930) The OpenSSF Package Analysis project identified 'ing-feat-lu-luxtrust-stick-authentication' @ 200.0.1 (npm) as malicious. It is considered...
7.3AI Score
Malicious code in ing-feat-lu-luxtrust-scan-authentication (npm)
-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (7a039831f4f0151208c7b3baf088dc5e4ca8dd88bbcbc4b5317c3b5e278557e7) The OpenSSF Package Analysis project identified 'ing-feat-lu-luxtrust-scan-authentication' @ 200.0.1 (npm) as malicious. It is considered malicious....
7.3AI Score
Missing Authorization vulnerability in Gangesh Matta Simple Org Chart.This issue affects Simple Org Chart: from n/a through...
5.3CVSS
0.0004EPSS
Missing Authorization vulnerability in Gangesh Matta Simple Org Chart.This issue affects Simple Org Chart: from n/a through...
5.3CVSS
5.4AI Score
0.0004EPSS
Malicious code in leocare-new (npm)
-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (311899bcdd83d3cd308268641290fc8fd0f503d308fc1bbf7488b5f0fab734cb) The OpenSSF Package Analysis project identified 'leocare-new' @ 1.0.0 (npm) as malicious. It is considered malicious because: The package...
7.3AI Score
CVE-2023-40603 WordPress Simple Org Chart plugin <= 2.3.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in Gangesh Matta Simple Org Chart.This issue affects Simple Org Chart: from n/a through...
5.3CVSS
0.0004EPSS
Malicious code in addthis-wordpress-plugin (npm)
-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (6d8ae72ce3501b8463193222bf9bebe2913ee52bf39fb10c8c9aa2f2049ebaa5) The OpenSSF Package Analysis project identified 'addthis-wordpress-plugin' @ 2.0.0 (npm) as malicious. It is considered malicious because: The...
7.3AI Score
Malicious code in ing-feat-grants-granting (npm)
-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (dd31269fee3651913ad04ebb491f4b2800b884e18bf1fe58bfdcaa172bedb657) The OpenSSF Package Analysis project identified 'ing-feat-grants-granting' @ 200.0.0 (npm) as malicious. It is considered malicious because: The...
7.3AI Score
Missing Authorization vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through...
5.4CVSS
0.0004EPSS
Missing Authorization vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through...
5.4CVSS
5.5AI Score
0.0004EPSS
Missing Authorization vulnerability in Brett Shumaker Simple Staff List.This issue affects Simple Staff List: from n/a through...
4.3CVSS
0.0004EPSS
Missing Authorization vulnerability in Brett Shumaker Simple Staff List.This issue affects Simple Staff List: from n/a through...
4.3CVSS
4.7AI Score
0.0004EPSS
7.2AI Score
CVE-2023-51526 WordPress Simple Staff List plugin <= 2.2.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in Brett Shumaker Simple Staff List.This issue affects Simple Staff List: from n/a through...
4.3CVSS
0.0004EPSS
Missing Authorization vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through...
5.4CVSS
0.0004EPSS
5.3CVSS
5.2AI Score
0.001EPSS
7.2AI Score
7.2AI Score
5.9CVSS
6.4AI Score
0.001EPSS
7.5CVSS
6.7AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.001EPSS
5.3CVSS
5.2AI Score
0.001EPSS
8.8CVSS
8.5AI Score
0.001EPSS
8.8CVSS
8.7AI Score
0.0004EPSS
9.8CVSS
9.5AI Score
0.932EPSS