7605 matches found
EUVD-2025-55058
Malicious code in current-lime-owl npm...
Malicious code in current-teal-tahr (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c79be0cb04aadbe113f1a77085712d63dd718ec27fcf559a222cec75728de14e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-55056
Malicious code in current-teal-tahr npm...
EUVD-2025-55059
Malicious code in current-coral-fish npm...
Malicious code in current-tomato-lemur (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 685d9e506cef16bae43fb33a25ba234d7eb3565bd863fe16f392284a781a8ea5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-55055
Malicious code in current-tomato-lemur npm...
EUVD-2025-55054
Malicious code in current-turquoise-catshark npm...
EUVD-2025-55057
Malicious code in current-plum-deer npm...
Adobe Illustrator 安全漏洞
Adobe Illustrator is a set of vector-based image creation software from the American company Audobee Adobe. A heap buffer overflow vulnerability exists in Adobe Illustrator, which can be exploited by an attacker to cause arbitrary code execution in the current user environment...
PT-2025-46286
Name of the Vulnerable Software and Affected Versions Preload Current Images plugin for WordPress versions prior to 1.4 Description The Preload Current Images plugin for WordPress is susceptible to Stored Cross-Site Scripting through the complete parameter within the 'preload progress bar'...
Adobe InCopy 资源管理错误漏洞
Adobe InCopy is a text editing software for creative writing from the American company Audobee Adobe. A memory misreference vulnerability exists in Adobe InCopy, which can be exploited by an attacker to cause arbitrary code to be executed in the current user's environment...
Adobe InCopy 安全漏洞
Adobe InCopy is a text editing software for creative writing from the American company Audobee Adobe. Adobe InCopy suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to cause arbitrary code execution in the current user environment...
Adobe InDesign Desktop 安全漏洞
Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to cause arbitrary code to be executed in the current user's environment...
WordPress plugin Preload Current Images 跨站脚本漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
WordPress Preload Current Images plugin <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability discovered by zakaria in WordPress Plugin Preload Current Images versions = 1.3...
EUVD-2025-50449
Malicious code in currentalbatrossz3n npm...
Teamcenter Visualization WRL File Parsing Vulnerabilities
Siemens Teamcenter Visualization contains multiple file-parsing vulnerabilities in its WRL-file reader that affect versions V14.2, V14.3, V2312, and V2406. If a user opens a specially crafted malicious WRL file, the application may crash or allow arbitrary code execution in the context of the...
Command Injection
git-commiters is vulnerable to command injection. The vulnerability is due to improper input sanitization in the gitCommitersoptions, callback function, which allows an attacker to inject arbitrary commands through unsanitized parameters such as cwd or revisionRange...
PT-2025-44884
A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2. An app may be able to learn information about the current camera view before being granted camera access...
Slackware: Security Advisory (SSA:2025-305-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...