Lucene search
+L

577 matches found

OSV
OSV
added 2026/01/05 5:11 p.m.6 views

MAL-2026-53 Malicious code in gztensor-cli (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6010189e23e54782200df770b6e40ed7e37284779c25f28cd145aadd9ee8b623 Package clones a legitimate library and adds a hidden code that downloads a malicious script. The script then downloads an archive with malicious executable in...

7.5AI score
Exploits0References4
OSV
OSV
added 2025/12/31 3:0 p.m.3 views

MAL-2025-193008 Malicious code in telegreph (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 cca72e5a6a205d657e13d29aee3f5448061afd17f222f11db168ef8a20744992 The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...

7AI score
Exploits0References2
OSV
OSV
added 2025/12/29 10:4 a.m.6 views

MAL-2025-192958 Malicious code in smtmlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e871336d0effe99cb62efeda3a287186e75c1bd4ca5770efd81718db8ababe4e Malicious copy of a standard library module that during class initialization downloads and executes remote code and after that attempts to cover its tracks by...

7.5AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/22 5:15 p.m.13 views

Malicious code in smtrlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2c1075f7c4373ccaac9936bfd75a22a27f0c9ba06a5402a68a45fe8121f58783 Malicious copy of a standard library module that during class initialization downloads and executes remote code and after that attempts to cover its tracks by...

7.6AI score
Exploits0References2
OSV
OSV
added 2025/12/22 5:15 p.m.5 views

MAL-2025-192690 Malicious code in smtrlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2c1075f7c4373ccaac9936bfd75a22a27f0c9ba06a5402a68a45fe8121f58783 Malicious copy of a standard library module that during class initialization downloads and executes remote code and after that attempts to cover its tracks by...

7.5AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/19 8:18 p.m.6 views

CVE-2023-53937

Hubstaff 1.6.14 contains a DLL search order hijacking vulnerability that allows attackers to replace a missing system32 wow64log.dll with a malicious library. Attackers can generate a custom DLL using Metasploit and place it in the system32 directory to obtain a reverse shell during application...

8.5CVSS6.8AI score0.00196EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.6 views

PT-2025-52316

Name of the Vulnerable Software and Affected Versions Hubstaff version 1.6.14 Description The software contains a DLL search order hijacking issue. An attacker can replace a missing system32wow64log.dll with a malicious library. By using tools like Metasploit to create a custom DLL and placing it...

8.5CVSS6.7AI score0.00196EPSS
Exploits1References5
Snyk
Snyk
added 2025/12/16 6:26 a.m.1 views

Malicious Package

Overview elf-stats-nutmeg-sleigh-350 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS6.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/15 3:24 p.m.12 views

Malicious code in smtblib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 15a295f1d98fcbbdd6a077bc3a849966ca3f73919c0d47e58948ff382481e5b6 Malicious copy of a standard library module that during class initialization downloads and executes remote code and after that attempts to cover its tracks by...

7.6AI score
Exploits0References2
Snyk
Snyk
added 2025/12/15 6:2 a.m.3 views

Malicious Package

Overview phx-core is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS6.8AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/11 5:2 p.m.6 views

CVE-2025-34421

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAISP.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS7.3AI score0.0017EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/11 5:2 p.m.5 views

CVE-2025-34420

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIAM.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS7.3AI score0.0015EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/11 5:2 p.m.5 views

CVE-2025-34424

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIDP.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS7.3AI score0.00147EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/11 5:2 p.m.5 views

CVE-2025-34423

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIAU.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS7.3AI score0.00147EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/10 6:30 p.m.6 views

EUVD-2025-202440

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIMF.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS7AI score0.00147EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/10 6:30 p.m.6 views

EUVD-2025-202443

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIAM.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS6.9AI score0.0015EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/10 6:30 p.m.6 views

EUVD-2025-202438

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIPO.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS7AI score0.0015EPSS
Exploits0References4
NVD
NVD
added 2025/12/10 4:16 p.m.7 views

CVE-2025-34419

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAISM.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS0.00147EPSS
Exploits0References3
OSV
OSV
added 2025/12/10 4:16 p.m.4 views

CVE-2025-34421

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAISP.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

7.8CVSS6.1AI score0.0017EPSS
Exploits0References3
OSV
OSV
added 2025/12/10 4:16 p.m.3 views

CVE-2025-34417

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAISO.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

7.8CVSS6.2AI score0.0015EPSS
Exploits0References3
Rows per page
Query Builder