6720 matches found
MAL-2025-190756 Malicious code in @seung-ju/openapi-generator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f38aa15b9a4a24dec5d8ea17b00f0bcc9e7ba46386fd087b3a9fa569ade45a6 The package @seung-ju/openapi-generator was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198685
Malicious code in @asyncapi/generator-helpers npm...
MAL-2025-190657 Malicious code in @asyncapi/generator-helpers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fb4a795f9e4f1dc8304d727b4b4a4b6d4024952675eb497e79b9f78fa2b96ca The package @asyncapi/generator-helpers was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198686
Malicious code in @asyncapi/generator-components npm...
Malicious code in @asyncapi/generator-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5719055be86fb9260cf6b5973a434e721bdd9be14f737de6cbd7ebddac9292ba The package @asyncapi/generator-components was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198634
Malicious code in @asyncapi/generator-react-sdk npm...
Malicious code in @asyncapi/generator-react-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b0dadd48783af136a9dcf3f65cf9f24675841f02c7d1a5b6dc60709b392bf98 The package @asyncapi/generator-react-sdk was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190637 Malicious code in @asyncapi/generator-react-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b0dadd48783af136a9dcf3f65cf9f24675841f02c7d1a5b6dc60709b392bf98 The package @asyncapi/generator-react-sdk was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198637
Malicious code in @asyncapi/generator npm...
Malicious code in @asyncapi/generator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63359c608231ec06641739879ea8b63b6989462cf0f52e20668b9a1ad27e04c8 The package @asyncapi/generator was found to contain malicious code. Source: ghsa-malware...
WordPress S2B AI Assistant – ChatBot, ChatGPT, OpenAI, Content & Image Generator plugin <= 1.7.8 - Authenticated (Editor+) Arbitrary File Upload vulnerability
Authenticated Editor+ Arbitrary File Upload vulnerability discovered by Ryan Kozak in WordPress Plugin S2B AI Assistant versions = 1.7.8...
CVE-2025-13583
A weakness has been identified in code-projects Question Paper Generator 1.0. This affects an unknown part of the file /signupscript.php of the component POST Parameter Handler. Executing manipulation of the argument Fname can lead to sql injection. The attack can be executed remotely. The exploi...
CVE-2025-13583
A weakness has been identified in code-projects Question Paper Generator 1.0. This affects an unknown part of the file /signupscript.php of the component POST Parameter Handler. Executing manipulation of the argument Fname can lead to sql injection. The attack can be executed remotely. The exploi...
CVE-2025-13583 code-projects Question Paper Generator POST Parameter signupscript.php sql injection
A weakness has been identified in code-projects Question Paper Generator 1.0. This affects an unknown part of the file /signupscript.php of the component POST Parameter Handler. Executing manipulation of the argument Fname can lead to sql injection. The attack can be executed remotely. The exploi...
CVE-2025-13583 code-projects Question Paper Generator POST Parameter signupscript.php sql injection
A weakness has been identified in code-projects Question Paper Generator 1.0. This affects an unknown part of the file /signupscript.php of the component POST Parameter Handler. Executing manipulation of the argument Fname can lead to sql injection. The attack can be executed remotely. The exploi...
CVE-2025-13583
CVE-2025-13583 affects Code-Projects Question Paper Generator 1.0, specifically the POST Parameter Handler’s signupscript.php. The vulnerability stems from manipulation of the Fname argument, which can lead to SQL injection. The issue is exploitable remotely, and the exploit has been made publicl...
EUVD-2025-198610
A weakness has been identified in code-projects Question Paper Generator 1.0. This affects an unknown part of the file /signupscript.php of the component POST Parameter Handler. Executing manipulation of the argument Fname can lead to sql injection. The attack can be executed remotely. The exploi...
Code-Projects Question Paper Generator SQL注入漏洞
Code-Projects Question Paper Generator is an open source question paper generation software from Code-Projects. Code-Projects Question Paper Generator version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter Fname in the file /signupscript.php...
bind security update
An update is available for bind. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Berkeley Internet Name Domain BIND is an implementation of the Domain Name...
JLSEC-2025-198 Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, us...
Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private key via side-channel attacks if a victim signs the same message many times. For Mbed TLS, the fix...