MAL-2026-2365 Malicious code in env-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9fdb2ca296901d2020b959a63ec369c661ac063698529ced5230cd04717a5c0 The package env-nodejs was found to contain malicious code...

CVE-2026-2365

creationtimestamp| type| source ---|---|--- 2026-03-05 06:28:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgc6ajd2bp2o...

EUVD-2021-2365

Malware in sbrugna...

CVE-2014-2365

creationtimestamp| type| source ---|---|--- 2025-10-06 18:13:43+00:00| seen| Telegram/DzFcST8KUKA3iVCW7gTtL2-vxq3niVKq7BCY-UqJbWQsRic...

EUVD-2025-2365

Malicious code in bioql PyPI...

CVE-2002-2365

Simple WAIS SWAIS 1.11 allows remote attackers to execute arbitrary commands via the shell metacharacters in the search field, as demonstrated using the "|" pipe character...

CVE-2025-2365

A vulnerability, which was classified as problematic, has been found in crmebjava up to 1.3.4. Affected by this issue is the function webHook of the file WeChatMessageController.java. The manipulation leads to xml external entity reference. The attack may be launched remotely. The exploit has bee...

CVE-2025-2365

A vulnerability, which was classified as problematic, has been found in crmebjava up to 1.3.4. Affected by this issue is the function webHook of the file WeChatMessageController.java. The manipulation leads to xml external entity reference. The attack may be launched remotely. The exploit has bee...

CVE-2025-2365

creationtimestamp| type| source ---|---|--- 2025-03-17 06:47:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7738 2025-03-17 09:06:08+00:00| seen| https://t.me/cvedetector/20436 2025-03-17 09:46:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkkuom3ro...

CVE-2025-2365 crmeb_java WeChatMessageController.java webHook xml external entity reference

A vulnerability, which was classified as problematic, has been found in crmebjava up to 1.3.4. Affected by this issue is the function webHook of the file WeChatMessageController.java. The manipulation leads to xml external entity reference. The attack may be launched remotely. The exploit has bee...

CVE-2025-2365 crmeb_java WeChatMessageController.java webHook xml external entity reference

A vulnerability, which was classified as problematic, has been found in crmebjava up to 1.3.4. Affected by this issue is the function webHook of the file WeChatMessageController.java. The manipulation leads to xml external entity reference. The attack may be launched remotely. The exploit has bee...

CVE-2025-2365

CVE-2025-2365 affects crmeb_java up to 1.3.4. The vulnerability resides in the WebHook function of WeChatMessageController.java, where an XML External Entity (XXE) reference can be introduced. The issue allows remote exploitation and has been publicly disclosed. CVSS metrics across sources indica...

RHEL 5 : pidgin (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - pidgin: Out-of-bounds write in purplemarkupunescapeentity triggered by invalid XML CVE-2017-2640 - A deni...

CVE-2024-2365

CVE-2024-2365 (Musicshelf, Android) affects Musicshelf 1.0/1.1. The vulnerability concerns an unknown function in PinningTrustManager.java (SHA-1 Handler) where manipulation could lead to a password hash with insufficient computational effort. Exploitation is described as possible on a physical d...

Advisory ROSA-SA-2024-2365

Software: net-snmp 5.8 OS: ROSA Virtualization 2.1 packageevrstring: net-snmp-5.8-27.rv3 CVE-ID: CVE-2022-44792 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: handleipDefaultTTL in agent/mibgroup/ip-mib/ipscalars.c in Net-SNMP has a NULL Pointer Exception error, which could be used by a remote attacker...

CVE-2023-2365

creationtimestamp| type| source ---|---|--- 2023-04-28 16:27:12+00:00| seen| https://t.me/cibsecurity/63039...

CVE-2023-2365

A vulnerability has been found in SourceCodester Faculty Evaluation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file ajax.php?action=deletesubject. The manipulation of the argument id leads to sql injection. The attack can be launched...

CVE-2023-2365

A vulnerability has been found in SourceCodester Faculty Evaluation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file ajax.php?action=deletesubject. The manipulation of the argument id leads to sql injection. The attack can be launched...

CVE-2023-2365

CVE-2023-2365 affects SourceCodester Faculty Evaluation System 1.0. The vulnerability is a SQL injection in the file ajax.php?action=delete_subject, triggered by manipulating the id argument. Many connected sources confirm remote exploitation and classify the issue as critical/high impact on conf...

CVE-2023-2365 SourceCodester Faculty Evaluation System sql injection

A vulnerability has been found in SourceCodester Faculty Evaluation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file ajax.php?action=deletesubject. The manipulation of the argument id leads to sql injection. The attack can be launched...