153 matches found
EUVD-2020-7858
Malware in sbrugna...
EUVD-2023-42613
Malicious code in bioql PyPI...
EUVD-2025-3679
Malicious code in bioql PyPI...
EUVD-2023-31442
Malicious code in bioql PyPI...
EUVD-2025-16233
Malicious code in bioql PyPI...
Scavenger Trojan Targets Crypto Wallets via Game Mods and Browser Flaws
New Scavenger Trojan steals crypto wallet data using fake game mods and browser flaws, targeting MetaMask, Exodus, Bitwarden, and other popular apps...
CVE-2025-5138
A vulnerability was found in Bitwarden up to 2.25.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component PDF File Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclos...
CVE-2025-5138
A vulnerability was found in Bitwarden up to 2.25.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component PDF File Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclos...
CVE-2025-5138 Bitwarden PDF File cross site scripting
A vulnerability was found in Bitwarden up to 2.25.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component PDF File Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclos...
CVE-2025-5138 Bitwarden PDF File cross site scripting
A vulnerability was found in Bitwarden up to 2.25.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component PDF File Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclos...
CVE-2025-5138
CVE-2025-5138 affects Bitwarden up to version 2.25.1. The vulnerability arises in the PDF File Handler component and enables cross-site scripting. Exploitation is possible remotely and, per linked sources, the exploit has been disclosed. Several connected sources corroborate an XSS flaw and note ...
PT-2025-22853 Β· Bitwarden Β· Bitwarden
Name of the Vulnerable Software and Affected Versions: Bitwarden versions up to 2.25.1 Description: A vulnerability was found in the PDF File Handler component of Bitwarden, leading to cross-site scripting. The attack can be launched remotely, and the exploit has been disclosed to the public. The...
Bitwarden 代η 注ε ₯ζΌζ΄
Bitwarden is an open source password manager from Bitwarden Inc. in the United States. A code injection vulnerability exists in Bitwarden 2.25.1 and earlier versions, which stems from a misbehavior of the component PDF File Handler resulting in cross-site scripting...
CVE-2023-27974
Bitwarden through 2023.2.1 offers password auto-fill when the second-level domain matches, e.g., a password stored for an example.com hosting provider when customer-website.example.com is visited. NOTE: the vendor's position is that "Auto-fill on page load" is not enabled by default...
CVE-2023-38840
Bitwarden Desktop 2023.7.0 and below allows an attacker with local access to obtain sensitive information via the Bitwarden.exe process...
CVE-2023-27706
Bitwarden Windows desktop application versions prior to v2023.4.0 store biometric keys in Windows Credential Manager, accessible to other local unprivileged processes...
CVE-2020-15879
Bitwarden Server 1.35.1 allows SSRF because it does not consider certain IPv6 addresses ones beginning with fc, fd, fe, or ff, and the :: address and certain IPv4 addresses 0.0.0.0/8, 127.0.0.0/8, and 169.254.0.0/16...
CVE-2019-19766
The Bitwarden server through 1.32.0 has a potentially unwanted KDF...
CVE-2018-25081
Bitwarden through 2023.2.1 offers password auto-fill within a cross-domain IFRAME element. NOTE: the vendor's position is that there have been important legitimate cross-domain configurations e.g., an apple.com IFRAME element on the icloud.com website and that "Auto-fill on page load" is not...
Lazywarden - Automatic Bitwarden Backup
Secure, Automated, and Multi-Cloud Bitwarden Backup and Import System Lazywarden is a Python automation tool designed to Backup and Restore data from your vault, including Bitwarden attachments. It allows you to upload backups to multiple cloud storage services and receive notifications across...