Malicious code in load-hot-info-delta-encode (npm)

The package load-hot-info-delta-encode was found to contain malicious code...

MAL-2025-32476 Malicious code in route-promise-class-file-encode (npm)

The package route-promise-class-file-encode was found to contain malicious code...

MAL-2025-20702 Malicious code in float-module-export-encode-parse (npm)

The package float-module-export-encode-parse was found to contain malicious code...

MAL-2025-40960 Malicious code in zeta-fire-throw-dog-encode (npm)

The package zeta-fire-throw-dog-encode was found to contain malicious code...

MAL-2025-39767 Malicious code in xi-shell-zeta-assert-encode (npm)

The package xi-shell-zeta-assert-encode was found to contain malicious code...

Malicious code in sandbox-encode-string-view-good (npm)

The package sandbox-encode-string-view-good was found to contain malicious code...

Malicious code in tau-encode-web-sed-small (npm)

The package tau-encode-web-sed-small was found to contain malicious code...

Malicious code in omega-pipe-stub-encode-easy (npm)

The package omega-pipe-stub-encode-easy was found to contain malicious code...

Malicious code in fire-new-encode-fire-transpile (npm)

The package fire-new-encode-fire-transpile was found to contain malicious code...

Malicious code in xi-shell-zeta-assert-encode (npm)

The package xi-shell-zeta-assert-encode was found to contain malicious code...

Malicious code in virtualize-encode-fire-sudo-finally (npm)

The package virtualize-encode-fire-sudo-finally was found to contain malicious code...

Malicious code in interface-signal-encode-authorize-big (npm)

The package interface-signal-encode-authorize-big was found to contain malicious code...

MAL-2025-32665 Malicious code in sandbox-encode-string-view-good (npm)

The package sandbox-encode-string-view-good was found to contain malicious code...

MAL-2025-19087 Malicious code in easy-encode-notify-emulate-cache (npm)

The package easy-encode-notify-emulate-cache was found to contain malicious code...

MAL-2025-36803 Malicious code in theta-encode-daemon-rho-rain (npm)

The package theta-encode-daemon-rho-rain was found to contain malicious code...

Linux Distros Unpatched Vulnerability : CVE-2025-30348

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string with relocation of later dat...

PT-2025-30676 · Wwbn +1 · Avideo +1

Name of the Vulnerable Software and Affected Versions: WWBN AVideo version 14.4 WWBN AVideo dev master commit 8a8954ff Description: A cross-site scripting xss issue exists in the LoginWordPress loginForm cancelUri parameter functionality. A crafted HTTP request can lead to arbitrary Javascript...

Thinkgem JeeSite 代码注入漏洞

Thinkgem JeeSite is an open source Java EE enterprise-class rapid development platform for China Zhuo Yuan Thinkgem company . The platform includes system permissions components , data permissions components , data dictionary components , core tools components , view manipulation components ,...

AZL-65048 CVE-2025-7345 affecting package gdk-pixbuf2 for versions less than 2.40.0-8

A flaw exists in gdk‑pixbuf within the gdkpixbufjpegimageloadincrement function io-jpeg.c and in glib’s gbase64encodestep glib/gbase64.c. When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory,...

CVE-2025-6209

A path traversal vulnerability exists in run-llama/llamaindex versions 0.12.27 through 0.12.40, specifically within the encodeimage function in genericutils.py. This vulnerability allows an attacker to manipulate the imagepath input to read arbitrary files on the server, including sensitive syste...