Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2026/02/17 9:31 p.m.3 views

GHSA-3M3Q-X3GJ-F79X OpenClaw optional voice-call plugin: webhook verification may be bypassed behind certain proxy configurations

Affected Packages / Versions This issue affects the optional voice-call plugin only. It is not enabled by default; it only applies to installations where the plugin is installed and enabled. - Package: @openclaw/voice-call - Vulnerable versions: = 2026.2.3 Legacy package name if you are still usi...

8.2CVSS5.5AI score0.00139EPSS
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/01/05 9:25 p.m.4 views

Malicious code in react-transition-group-legacy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 766e17e75d1b6492251c7c647d0783879b9fb18f0793046fc985e40a46295d63 The package react-transition-group-legacy was found to contain malicious code. Source: ossf-package-analysis...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/08/14 6:52 p.m.2 views

Malicious code in @create-project-container/legacy (npm)

The package @create-project-container/legacy was found to contain malicious code...

7AI score
Exploits0
OSV
OSVadded 2025/08/14 6:52 p.m.1 views

MAL-2025-7733 Malicious code in @create-project-container/legacy (npm)

The package @create-project-container/legacy was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSVadded 2025/08/14 6:52 p.m.1 views

MAL-2025-9149 Malicious code in @oss-ui/capsig-legacy (npm)

The package @oss-ui/capsig-legacy was found to contain malicious code...

7.2AI score
Exploits0
Snyk
Snykadded 2025/03/11 7:44 p.m.1 views

Improper Verification of Cryptographic Signature

Overview Affected versions of this package are vulnerable to Improper Verification of Cryptographic Signature through the HTTPRedirect binding process. An attacker can manipulate the message processing by appending a malicious SAMLRequest in front of a valid SAMLResponse, leading to the applicati...

8.6CVSS6.9AI score0.00157EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/06/25 1:26 p.m.2 views

Malicious code in Be.Vlaanderen.Basisregistеrs.PаrсеlRegistry.Api.Legacy (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
Snyk
Snykadded 2022/09/28 8:12 a.m.1 views

Malicious Package

Overview @fabric-design/components-legacy is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable ...

9.8CVSS7.1AI score
Exploits0References3
securityvulns
securityvulnsadded 2014/10/14 12:0 a.m.55 views

FreePBX (All Versions) RCE

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 We would like to announce that a significant security vulnerability has been discovered in all current versions of FreePBX. A CVE has been requested from Mitre, but has yet to be provided. Further details as they come to hand will be available from...

0.4AI score
Exploits0
Rows per page
Query Builder