Malicious code in randomlogs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c085eee0876092131c3f909facc237674fcfb1e02bafbafcb34230c87b3a3819 The package's main module index.js lines 6-10 exports a function mal that opens a TCP socket to 223.229.156.10:5513 and pipes a spawned shell /bin/sh...

AlmaLinux 8 : 389-ds:1.4 (ALSA-2026:5513)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:5513 advisory. 389-ds-base: 389-ds-base: Remote Code Execution and Denial of Service via heap buffer overflow CVE-2025-14905 Tenable has extracted the preceding description block...

CVE-2025-5513

creationtimestamp| type| source ---|---|--- 2025-06-03 18:15:46+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqpvj4ws2am2 2025-06-03 18:37:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqpwpkpayd2p...

CVE-2025-5513

A vulnerability has been found in quequnlong shiyi-blog up to 1.2.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /dev-api/api/comment/add. The manipulation of the argument content leads to cross site scripting. The attack can be launched...

CVE-2025-5513 quequnlong shiyi-blog add cross site scripting

A vulnerability has been found in quequnlong shiyi-blog up to 1.2.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /dev-api/api/comment/add. The manipulation of the argument content leads to cross site scripting. The attack can be launched...

CVE-2025-5513

CVE-2025-5513 affects quequnlong shiyi-blog up to version 1.2.1. The vulnerability concerns an unknown function at /dev-api/api/comment/add where manipulating the content argument enables cross-site scripting. Attacks can be launched remotely, and the exploit has been disclosed publicly; vendor r...

CVE-2020-5513

Gila CMS 1.11.8 allows /cm/delete?t=../ Directory Traversal...

Linux Distros Unpatched Vulnerability : CVE-2012-5513

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The XENMEMexchange handler in Xen 4.2 and earlier does not properly check the memory address, which allows local PV guest OS administrators to cause a denial of...

CVE-2023-5513

creationtimestamp| type| source ---|---|--- 2025-02-11 02:17:07+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulpxykmc2o...

CVE-2024-5513

creationtimestamp| type| source ---|---|--- 2024-11-22 21:42:57+00:00| seen| https://infosec.exchange/users/cve/statuses/113528784599561476...

CVE-2014-5513

CVE-2014-5513 is reflected in the Ubuntu security entry for ntopng, which notes vulnerabilities fixed upstream in version 1.2.1. The connected document confirms ntopng as affected and provides a fixed-upstream reference, but the specific root cause, vulnerable component details, impact scope, or ...

Debian DSA-5513-1 : thunderbird - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5513 advisory. Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. Debian follows the...

Ubuntu: Security Advisory (USN-5513-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2012:1606-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2012:1615-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gila CMS Local File Inclusion (CVE-2020-5513)

A local file inclusion vulnerability exists in Gila CMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

CVE-2020-5513

Gila CMS 1.11.8 is affected by a Directory Traversal issue exposed via /cm/delete?t=../. The vulnerability allows traversal outside restricted directories (path traversal), with CVE-2020-5513 documented across multiple sources (CNVD, NVD, Red Hat, CVE listing). Some connected references describe ...

CVE-2019-5513

CVE-2019-5513 affects VMware Horizon Connection Server. Affected products/versions include Horizon 7.x prior to 7.8, Horizon 7.5.x prior to 7.5.2, and Horizon 6.x prior to 6.2.8. The vulnerability is an information-disclosure flaw that can allow disclosure of internal domain names, the Connection...

NREL BEopt 2.8.0 Insecure Library Loading Arbitrary Code Execution

/ NREL BEopt 2.8.0 Insecure Library Loading Arbitrary Code Execution Vendor: NREL Product web page: https://beopt.nrel.gov Affected version: 2.8.0.0, 2.7.0.0 and 2.6.0.1 Summary: The BEoptaC/ Building Energy Optimization Tool software provides capabilities to evaluate residential building designs...

F5 Networks BIG-IP : TMM vulnerability (K46940010)

A malformed Transport Layer Security TLS handshake causes the Traffic Management Microkernel TMM to stop responding, leading to a disruption of service. This issue is only exposed on the data plane when a Proxy SSL configuration is enabled. The control plane is not impacted by this issue...