298 matches found
Malicious code in turbo-json-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a239b53ed6cbc1e72aac660afa08204b9de36dae39068c30cf175ddd390b4fd1 The package turbo-json-parser was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1213 Malicious code in turbo-json-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a239b53ed6cbc1e72aac660afa08204b9de36dae39068c30cf175ddd390b4fd1 The package turbo-json-parser was found to contain malicious code. Source: ghsa-malware...
Allocation of Resources Without Limits or Throttling
Overview com.fasterxml.jackson.core:jackson-core is a Core Jackson abstractions, basic JSON streaming API implementation Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in which the non-blocking async JSON parser can be made to bypass the...
fuzzing-portfolio-project
Fuzzing Portfolio Project: Heap Overflow Discovery Author:...
SKRoot security vulnerabilities
SKRoot is a Linux kernel root tool developed by abcz316. SKRoot has a security vulnerability, which stems from a null pointer dereferencing in the JSON parsing component cJSON.Cpp, potentially leading to crashes...
CVE-2022-23460
Jsonxx or Json++ is a JSON parser, writer and reader written in C++. In affected versions of jsonxx json parsing may lead to stack exhaustion in an address sanitized ASAN build. This issue may lead to Denial of Service if the program using the jsonxx library crashes. This issue exists on the...
EUVD-2025-205797
Malicious code in @peterwilson12091/internal-json-test-parser npm...
CVE-2025-67731 Servify Express does not enforce rate limiting when parsing JSON
Servify Express is a Node.js package to start an Express server and log the port it's running on. Prior to 1.2, the Express server used express.json without a size limit, which could allow attackers to send extremely large request bodies. This can cause excessive memory usage, degraded performanc...
PT-2025-50903
Servify Express is a Node.js package to start an Express server and log the port it's running on. Prior to 1.2, the Express server used express.json without a size limit, which could allow attackers to send extremely large request bodies. This can cause excessive memory usage, degraded performanc...
📄 Apache bRPC Stack Overflow
A critical stack overflow vulnerability in Apache bRPC's JSON parser allows remote attackers to crash servers via specially crafted deep recursive JSON data. Versions prior to 1.15.0 are affected...
CVE-2025-59789 Apache bRPC: Stack Exhaustion via Unbounded Recursion in JSON Parser
Uncontrolled recursion in the json2pb component in Apache bRPC version 1.15.0 on all platforms allows remote attackers to make the server crash via sending deep recursive json data. Root Cause: The bRPC json2pb component uses rapidjson to parse json data from the network. The rapidjson parser use...
PT-2025-43032
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 141.0.7390.122 Description An out-of-bounds memory access issue exists in the V8 JavaScript engine within Google Chrome. This flaw allows a remote attacker to perform out-of-bounds memory access by way of a...
EUVD-2018-3403
Malware in sbrugna...
EUVD-2020-12718
Malware in sbrugna...
EUVD-2021-10091
Malware in sbrugna...
EUVD-2023-27188
Malicious code in bioql PyPI...
EUVD-2022-28530
Malicious code in bioql PyPI...
EUVD-2022-28531
Malicious code in bioql PyPI...
EUVD-2025-25716
Malicious code in bioql PyPI...
EUVD-2021-31223
Malicious code in bioql PyPI...