1738 matches found
EUVD-2021-31289
Malicious code in bioql PyPI...
EUVD-2024-47637
Malicious code in bioql PyPI...
EUVD-2022-4596
Malicious code in bioql PyPI...
EUVD-2022-15419
Malicious code in bioql PyPI...
EUVD-2021-31758
Malicious code in bioql PyPI...
CVE-2025-56200
A URL validation bypass vulnerability exists in validator.js through version 13.15.15. The isURL function uses '://' as a delimiter to parse protocols, while browsers use ':' as the delimiter. This parsing difference allows attackers to bypass protocol and domain validation by crafting URLs leadi...
BELL-CVE-2025-59800
Bulletin has no description...
CVE-2025-48531
In getCallingPackageName of CredentialStorage, there is a possible permission bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
Linux Distros Unpatched Vulnerability : CVE-2021-28153
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GNOME GLib before 2.66.8. When gfilereplace is used with GFILECREATEREPLACEDESTINATION to replace a path that is a dangling symlink, ...
MINI-9FMF-XPVW-F35H
Bulletin has no description...
Linux Distros Unpatched Vulnerability : CVE-2019-12219
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libSDL2.a in Simple DirectMedia Layer SDL 2.0.9 when used in conjunction with libSDL2image.a in SDL2image 2.0.4. There is an invalid...
Linux Distros Unpatched Vulnerability : CVE-2018-20751
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in croppage in PoDoFo 0.9.6. For a crafted PDF document, pPage-GetObject-GetDictionary.AddKeyPdfNameMediaBox,var can be problematic due ...
Linux Distros Unpatched Vulnerability : CVE-2021-29482
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format...
MAL-2025-27079 Malicious code in narakan (npm)
The package narakan was found to contain malicious code...
MAL-2025-26354 Malicious code in mike-tangerine-toic (npm)
The package mike-tangerine-toic was found to contain malicious code...
MAL-2025-27319 Malicious code in netsuite-suitetalk-wsdl-v2019-2.0 (npm)
The package netsuite-suitetalk-wsdl-v2019-2.0 was found to contain malicious code...
MAL-2025-22073 Malicious code in gymarb (npm)
The package gymarb was found to contain malicious code...
MAL-2025-15926 Malicious code in body-parse-xml (npm)
The package body-parse-xml was found to contain malicious code...
MAL-2025-25644 Malicious code in lucid-xe98q-a6ugy-pebble-project (npm)
The package lucid-xe98q-a6ugy-pebble-project was found to contain malicious code...
MAL-2025-19692 Malicious code in eos-transfers (npm)
The package eos-transfers was found to contain malicious code...