2189 matches found
Malicious code in bot-fb (npm)
The package bot-fb was found to contain malicious code...
MAL-2025-16004 Malicious code in bot-methods (npm)
The package bot-methods was found to contain malicious code...
Malicious code in contentful-build-bot (npm)
The package contentful-build-bot was found to contain malicious code...
Malicious code in tanjiro-ping-bot (npm)
The package tanjiro-ping-bot was found to contain malicious code...
MAL-2025-36790 Malicious code in thepond-whitelist-bot (npm)
The package thepond-whitelist-bot was found to contain malicious code...
MAL-2025-20289 Malicious code in fca-bot-game (npm)
The package fca-bot-game was found to contain malicious code...
MAL-2025-19121 Malicious code in echo-bot-ts-esm (npm)
The package echo-bot-ts-esm was found to contain malicious code...
MAL-2025-14637 Malicious code in api-bot-basil (npm)
The package api-bot-basil was found to contain malicious code...
MAL-2025-16003 Malicious code in bot-fb (npm)
The package bot-fb was found to contain malicious code...
Malicious code in generator-watson-text-bot (npm)
The package generator-watson-text-bot was found to contain malicious code...
MAL-2025-21274 Malicious code in generator-bot-template-generator (npm)
The package generator-bot-template-generator was found to contain malicious code...
cassandra-query (>=1.0.1 <=1.0.3), toobatel-bot-lib-js (=1.0.0) potentially affected by unknown CVE via blubird (=0.0.1-security)
blubird NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on blubird and may be impacted: - cassandra-query =1.0.1, =1.0.3 - toobatel-bot-lib-js =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-15874...
MAL-2025-17515 Malicious code in contentful-build-bot (npm)
The package contentful-build-bot was found to contain malicious code...
Malicious code in api-bot-basil (npm)
The package api-bot-basil was found to contain malicious code...
Malicious code in basil-bot-2k4 (npm)
The package basil-bot-2k4 was found to contain malicious code...
Malicious code in bot-methods (npm)
The package bot-methods was found to contain malicious code...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +2850 more potentially affected by CVE-2025-55163 via io.netty:netty-codec-http2 (>=4.2.0.Alpha1 <=4.2.3.Final)
io.netty:netty-codec-http2 MAVEN version =4.2.0.Alpha1, =0.1.0, =0.1.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.1 and more Source cves: CVE-2025-55163 Source advisory: SNYK:JAVA-IONETTY-11799531...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +2850 more potentially affected by CVE-2025-55163 via io.netty:netty-codec-http2 (>=4.2.0.Alpha1 <=4.2.3.Final)
io.netty:netty-codec-http2 MAVEN version =4.2.0.Alpha1, =0.1.0, =0.1.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.0, =26.3.1 and more Source cves: CVE-2025-55163 Source advisory: OSV:GHSA-PRJ3-CCX8-P6X4...
ai.ancf.lmos:arc-gemini-client (>=0.1.1 <=0.104.0), ai.bareun.tagger:bareun (>=1.0.0 <=1.4.3) +5261 more potentially affected by CVE-2025-55163 via io.grpc:grpc-netty-shaded (>=1.10.1 <=1.74.0)
io.grpc:grpc-netty-shaded MAVEN version =1.10.1, =0.1.1, =1.0.0, =0.0.23, =0.9.0, =3.10.0.5, =0.2.7, =0.2.7, =1.3.3, =24.9.0, =24.9.0, =24.9.0, =24.9.0, =24.9.5, =24.9.0, =24.9.0, =25.10.7 and more Source cves: CVE-2025-55163 Source advisory: OSV:GHSA-PRJ3-CCX8-P6X4...
CVE-2025-54573
CVAT is an open source interactive video and image annotation tool for computer vision. In versions 1.1.0 through 2.41.0, email verification was not enforced when using Basic HTTP Authentication. As a result, users could create accounts using fake email addresses and use the product as verified...