Lucene search
+L

145 matches found

osv
osv
added 2026/06/26 5:59 p.m.3 views

CVE-2026-47692 Envoy: PROXY Protocol v2 header generator emits "skipped" TLVs, causing 65 KB attacker-controlled spillover into the upstream application stream

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.34.0 until 1.35.13, 1.36.9, 1.37.5, and 1.38.3, PROXY Protocol v2 header generator emits TLVs beyond the maximum length of 65535 bytes, causing a mismatch between bytes written and the length field in th...

4.8CVSS5.9AI score0.00218EPSS
Exploits0References3
osv
osv
added 2026/06/06 4:6 a.m.6 views

MINI-J7R8-65CM-RJ3F

Bulletin has no description...

6.1CVSS5.2AI score0.00188EPSS
Exploits0
nessus
nessus
added 2026/06/01 12:0 a.m.21 views

SUSE SLES15 Security Update : java-1_8_0-ibm (SUSE-SU-2026:2110-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2110-1 advisory. This update for java-180-ibm fixes the following issues - CVE-2026-22007: APIs in the specified component can lead to an unauthoriz...

9.8CVSS7.3AI score0.00702EPSS
Exploits0References23
cvelist
cvelist
added 2026/04/06 3:58 p.m.32 views

CVE-2026-34951 Reflected XSS in footer.php in Workbench Allows Attackers to Hijack Authenticated Sessions

Workbench is a suite of tools for administrators and developers to interact with Salesforce.com organizations via the Force.com APIs. Prior to 65.0.0, Workbench contains a reflected cross-site scripting vulnerability via the footerScripts parameter, which does not sanitize user-supplied input...

5.1CVSS0.00149EPSS
Exploits0References1
ossf
ossf
added 2025/11/12 4:47 p.m.5 views

Malicious code in alvino-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd32fdfe17c6eca18e4f2e28a72b42f56d7819b517c26791643b1054585f8868 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
ossf
ossf
added 2025/11/12 4:47 p.m.5 views

Malicious code in kentung-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fb1a975bf9dccc15939d626a4564428f4138a871976680ea106c50725659d70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
ossf
ossf
added 2025/11/12 4:47 p.m.3 views

Malicious code in hariyono-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0a2ef191fd6648c465768a9f9a48aed86e1e02c5b0fabeb64f3fc4b600b20e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
ossf
ossf
added 2025/11/12 4:47 p.m.5 views

Malicious code in aril-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba0c82e766486c61c9c34d296f86393771d761920e8d864fdac2b2bf59e89e0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
osv
osv
added 2025/11/12 4:47 p.m.3 views

MAL-2025-153717 Malicious code in billa-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f27bd64df46c8942759e41b9d3c5691752db56209deebe423c89dc05d374252 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
ossf
ossf
added 2025/11/12 4:47 p.m.5 views

Malicious code in cinta-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f967ebd8bcec319e739fd80bf26abc76a74972a746f842900a964a0e39ac6b04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
ossf
ossf
added 2025/11/12 4:47 p.m.4 views

Malicious code in intan-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc082ad2fee625342e444c3a86f3cdeced3923ba9c7376bb1847c96c18da9d18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
osv
osv
added 2025/11/12 4:47 p.m.3 views

MAL-2025-155673 Malicious code in hariyono-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0a2ef191fd6648c465768a9f9a48aed86e1e02c5b0fabeb64f3fc4b600b20e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
osv
osv
added 2025/11/12 4:47 p.m.3 views

MAL-2025-164939 Malicious code in rita-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbc1f7fe8b4b82e41e5bc7a0cc7e9ba7e6f3d82e00e1d0bf17beebbd6f2fdad1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
osv
osv
added 2025/11/12 4:47 p.m.4 views

MAL-2025-152507 Malicious code in alvira-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9096923524cb911a6e69b0ec54fb2876b41651fc61480b1378ad238ff596468 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
euvd
euvd
added 2025/11/12 4:37 a.m.5 views

EUVD-2025-120016

Malicious code in nethalibutazure-65 npm...

6.6AI score
Exploits0
ossf
ossf
added 2025/11/11 7:47 a.m.4 views

Malicious code in final_grouse_beige-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84317f00281b604fd27a41c60a1e3453221af7d6a0d1c4c2318fd83e6ab09ff7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
ossf
ossf
added 2025/11/11 7:47 a.m.5 views

Malicious code in zeroth_catshark_blush-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af0114f244163ac2356a4ff4eaacb35d9351f77ddba9e2b1c64c1df936b9d0c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
euvd
euvd
added 2025/11/11 7:47 a.m.2 views

EUVD-2025-74212

Malicious code in specifiedporpoiseblack-65 npm...

6.6AI score
Exploits0
euvd
euvd
added 2025/11/11 7:47 a.m.1 views

EUVD-2025-74749

Malicious code in determinedearwigtomato-65 npm...

6.6AI score
Exploits0
euvd
euvd
added 2025/11/11 7:47 a.m.3 views

EUVD-2025-74589

Malicious code in handsomeskunkmaroon-65 npm...

6.6AI score
Exploits0
Rows per page
Query Builder