Lucene search
K

2151 matches found

Github Security Blog
Github Security Blog
added 2026/05/21 5:9 p.m.11 views

androidqf: Zip entry Name Injection in APK bundle (Zip Slip for zip consumers)

Summary generateZipPath constructs zip entry names for collected APKs using device controlled content from extractFileName. Since extractFileName does not reject traversal sequences, the resulting zip entry name can contain ../. AndroidQF itself does not extract the zip it creates, but any forens...

5.8AI score
Exploits0References3Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/21 12:0 a.m.33 views

Malicious code in polymarket-bot (npm)

A coordinated supply-chain attack comprising 9 npm packages published by maintainer polymarketdev GitHub actor texsellix, repo texsellix/polymarket-trading-bot within a 2-minute window on 2026-05-20T23:30Z–23:32Z. All packages masquerade as legitimate Polymarket CLOB trading tools while...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/21 12:0 a.m.13 views

Malicious code in polymarket-terminal (npm)

A coordinated supply-chain attack comprising 9 npm packages published by maintainer polymarketdev GitHub actor texsellix, repo texsellix/polymarket-trading-bot within a 2-minute window on 2026-05-20T23:30Z–23:32Z. All packages masquerade as legitimate Polymarket CLOB trading tools while...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/21 12:0 a.m.12 views

MAL-2026-4214 Malicious code in polymarket-terminal (npm)

A coordinated supply-chain attack comprising 9 npm packages published by maintainer polymarketdev GitHub actor texsellix, repo texsellix/polymarket-trading-bot within a 2-minute window on 2026-05-20T23:30Z–23:32Z. All packages masquerade as legitimate Polymarket CLOB trading tools while...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/21 12:0 a.m.9 views

MAL-2026-4210 Malicious code in polymarket-auto-trade (npm)

A coordinated supply-chain attack comprising 9 npm packages published by maintainer polymarketdev GitHub actor texsellix, repo texsellix/polymarket-trading-bot within a 2-minute window on 2026-05-20T23:30Z–23:32Z. All packages masquerade as legitimate Polymarket CLOB trading tools while...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/21 12:0 a.m.13 views

MAL-2026-4216 Malicious code in polymarket-trader (npm)

A coordinated supply-chain attack comprising 9 npm packages published by maintainer polymarketdev GitHub actor texsellix, repo texsellix/polymarket-trading-bot within a 2-minute window on 2026-05-20T23:30Z–23:32Z. All packages masquerade as legitimate Polymarket CLOB trading tools while...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/21 12:0 a.m.10 views

MAL-2026-4215 Malicious code in polymarket-trade (npm)

A coordinated supply-chain attack comprising 9 npm packages published by maintainer polymarketdev GitHub actor texsellix, repo texsellix/polymarket-trading-bot within a 2-minute window on 2026-05-20T23:30Z–23:32Z. All packages masquerade as legitimate Polymarket CLOB trading tools while...

5.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/20 10:2 a.m.10 views

Malicious code in klaudius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0b40ecfc7aa434ac63d620d4aaab0434dd57b0fac274bb9f5d1514e263be4a3 The package's CLI bundle dist/bin.js and an associated chunk dist/chunk-SZ4KCTSL.js contain hardcoded fetch POST calls to https://api.telegram.org, t...

5.8AI score
Exploits0References6
OSV
OSV
added 2026/05/20 10:2 a.m.8 views

MAL-2026-4593 Malicious code in klaudius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0b40ecfc7aa434ac63d620d4aaab0434dd57b0fac274bb9f5d1514e263be4a3 The package's CLI bundle dist/bin.js and an associated chunk dist/chunk-SZ4KCTSL.js contain hardcoded fetch POST calls to https://api.telegram.org, t...

5.8AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/20 8:0 a.m.12 views

Malicious code in art-template (npm)

Versions 4.13.3, 4.13.5, and 4.13.6 of art-template were published after an npm account takeover and ship a tampered browser bundle lib/template-web.js that loads remote attacker-controlled JavaScript. The final payload is the Coruna iOS exploit kit, which targets Safari on iPhone and iPad and...

5.9AI score
Exploits0References3
OSV
OSV
added 2026/05/20 8:0 a.m.9 views

MAL-2026-4200 Malicious code in art-template (npm)

Versions 4.13.3, 4.13.5, and 4.13.6 of art-template were published after an npm account takeover and ship a tampered browser bundle lib/template-web.js that loads remote attacker-controlled JavaScript. The final payload is the Coruna iOS exploit kit, which targets Safari on iPhone and iPad and...

5.9AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/20 7:57 a.m.11 views

CVE-2026-32323

Mullvad VPN is a VPN client app for desktop and mobile. When using macOS with versions 2026.1 and below, Mullvad VPN may allow local privilege escalation during installation or upgrade. The installer package executes binaries from /Applications/Mullvad VPN.app without verifying if the bundle is...

7.8CVSS6.1AI score0.00107EPSS
Exploits0References1
Circl
Circl
added 2026/05/20 3:7 a.m.10 views

CVE-2026-43617

creationtimestamp| type| source ---|---|--- 2026-05-20 03:07:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmawgue5xu2p 2026-05-20 04:18:43+00:00| seen| https://vulnerability.circl.lu/bundle/98dfc241-f74a-4ad3-9b5d-a312ab6e6c87 2026-05-20 09:58:23+00:00| seen|...

6.3CVSS5.8AI score0.00282EPSS
Exploits0References5
Circl
Circl
added 2026/05/20 3:1 a.m.8 views

CVE-2026-43618

creationtimestamp| type| source ---|---|--- 2026-05-20 03:01:26+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmaw3floka2w 2026-05-20 03:12:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmawptyklz2i 2026-05-20 04:18:43+00:00| seen|...

8.1CVSS5.8AI score0.0078EPSS
Exploits0References6
NVD
NVD
added 2026/05/19 2:16 a.m.10 views

CVE-2026-32323

Mullvad VPN is a VPN client app for desktop and mobile. When using macOS with versions 2026.1 and below, Mullvad VPN may allow local privilege escalation during installation or upgrade. The installer package executes binaries from /Applications/Mullvad VPN.app without verifying if the bundle is...

7.8CVSS0.00107EPSS
Exploits0References2
CVE
CVE
added 2026/05/19 12:23 a.m.39 views

CVE-2026-32323

CVE-2026-32323 : Mullvad VPN for macOS versions 2026.1 and earlier are affected by a local privilege escalation in the installer. The installer executes binaries from /Applications/Mullvad VPN.app without verifying that the bundle is attacker-controlled or legitimate, allowing a user in the admin...

7.8CVSS6.1AI score0.00107EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/19 12:23 a.m.35 views

CVE-2026-32323 Mullvad VPN for macOS: Local Privilege Escalation via unverified bundle path in installer

Mullvad VPN is a VPN client app for desktop and mobile. When using macOS with versions 2026.1 and below, Mullvad VPN may allow local privilege escalation during installation or upgrade. The installer package executes binaries from /Applications/Mullvad VPN.app without verifying if the bundle is...

7.3CVSS0.00107EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/19 12:23 a.m.11 views

EUVD-2026-30818

Mullvad VPN is a VPN client app for desktop and mobile. When using macOS with versions 2026.1 and below, Mullvad VPN may allow local privilege escalation during installation or upgrade. The installer package executes binaries from /Applications/Mullvad VPN.app without verifying if the bundle is...

7.3CVSS6.1AI score0.00107EPSS
Exploits0References2
OSV
OSV
added 2026/05/18 5:27 p.m.9 views

GHSA-7FV8-6PP7-6H85 Sulu: Weak Cryptographical usage for API Key generation and Reset Tokens

Impact The password reset tokenand API key generation uses a weak cryptographical hash algorithm. Patches Fixed in 2.6.23 and 3.0.6 version. Workarounds Patch the related User.php and ResettingController.php file in the SecurityBundle...

6.9CVSS5.8AI score0.00193EPSS
Exploits0References5
Snyk
Snyk
added 2026/05/18 5:27 p.m.10 views

Use of a Broken or Risky Cryptographic Algorithm

Overview sulu/sulu is a highly extensible open-source PHP content management system based on the Symfony framework. Affected versions of this package are vulnerable to Use of a Broken or Risky Cryptographic Algorithm due to the use of a weak cryptographical hash algorithm in the User.php and...

6.9CVSS5.8AI score0.00193EPSS
Exploits0References2
Rows per page
Query Builder