Lucene search
K

204 matches found

Wolfi
Wolfi
added 2026/01/07 1:51 a.m.1 views

GHSA-C43Q-5HPJ-4CRV vulnerabilities

Vulnerabilities for packages: cassandra-reaper...

7AI score
Exploits0
Wolfi
Wolfi
added 2026/01/07 1:51 a.m.8 views

CVE-2015-0886 vulnerabilities

Vulnerabilities for packages: cassandra-reaper...

5CVSS7AI score0.04803EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/07 1:51 a.m.2 views

GHSA-J26W-F9RQ-MR2Q vulnerabilities

Vulnerabilities for packages: cassandra-reaper...

5.2AI score
Exploits0
Wolfi
Wolfi
added 2026/01/07 1:51 a.m.1 views

GHSA-9H6P-92JQ-888X vulnerabilities

Vulnerabilities for packages: cassandra-reaper...

7AI score
Exploits0
Wolfi
Wolfi
added 2026/01/07 1:51 a.m.6 views

CVE-2024-9823 vulnerabilities

Vulnerabilities for packages: cassandra-reaper...

7.5CVSS6.6AI score0.00946EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/07 1:51 a.m.6 views

CVE-2021-28168 vulnerabilities

Vulnerabilities for packages: cassandra-reaper...

6.2CVSS7AI score0.00905EPSS
Exploits0
Chainguard
Chainguard
added 2026/01/07 1:29 a.m.6 views

CVE-2021-28168 vulnerabilities

Vulnerabilities for packages: cassandra-reaper...

6.2CVSS7AI score0.00905EPSS
Exploits0
Chainguard
Chainguard
added 2026/01/07 1:29 a.m.2 views

GHSA-C43Q-5HPJ-4CRV vulnerabilities

Vulnerabilities for packages: cassandra-reaper...

7AI score
Exploits0
Metasploit
Metasploit
added 2025/12/10 6:57 p.m.682 views

Magento SessionReaper

This module exploits CVE-2025-54236 SessionReaper, a critical vulnerability in Magento/Adobe Commerce that allows unauthenticated remote code execution. The vulnerability stems from improper handling of nested deserialization in the payment method context, combined with an unauthenticated file...

9.1CVSS7.8AI score0.96742EPSS
Exploits9
CBLMariner
CBLMariner
added 2025/12/05 3:44 a.m.8 views

CVE-2025-12816 affecting package reaper for versions less than 3.1.1-21

CVE-2025-12816 affecting package reaper for versions less than 3.1.1-21. A patched version of the package is available...

8.6CVSS6.9AI score0.00689EPSS
Exploits1
CBLMariner
CBLMariner
added 2025/12/05 3:44 a.m.9 views

CVE-2025-66031 affecting package reaper for versions less than 3.1.1-21

CVE-2025-66031 affecting package reaper for versions less than 3.1.1-21. A patched version of the package is available...

8.7CVSS6.9AI score0.00373EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/05 3:44 a.m.12 views

CVE-2025-66030 affecting package reaper for versions less than 3.1.1-21

CVE-2025-66030 affecting package reaper for versions less than 3.1.1-21. A patched version of the package is available...

6.3CVSS6.9AI score0.00276EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/05 3:44 a.m.10 views

CVE-2018-19827 affecting package reaper for versions less than 3.1.1-20

CVE-2018-19827 affecting package reaper for versions less than 3.1.1-20. A patched version of the package is available...

8.8CVSS6.9AI score0.02044EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/05 3:44 a.m.7 views

CVE-2018-19797 affecting package reaper for versions less than 3.1.1-20

CVE-2018-19797 affecting package reaper for versions less than 3.1.1-20. A patched version of the package is available...

6.5CVSS6.9AI score0.01829EPSS
Exploits0
OSV
OSV
added 2025/11/26 11:15 p.m.5 views

AZL-71134 CVE-2025-66031 affecting package reaper for versions less than 3.1.1-21

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This...

8.7CVSS6.2AI score0.00373EPSS
Exploits0References1
OSV
OSV
added 2025/11/26 11:15 p.m.9 views

AZL-71131 CVE-2025-66030 affecting package reaper for versions less than 3.1.1-21

Forge also called node-forge is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be...

6.3CVSS6.2AI score0.00276EPSS
Exploits0References1
OSV
OSV
added 2025/11/25 8:15 p.m.8 views

AZL-71125 CVE-2025-12816 affecting package reaper for versions less than 3.1.1-21

An interpretation-conflict CWE-436 vulnerability in node-forge versions 1.3.1 and earlier enables unauthenticated attackers to craft ASN.1 structures to desynchronize schema validations, yielding a semantic divergence that may bypass downstream cryptographic verifications and security decisions...

8.6CVSS7.2AI score0.00689EPSS
Exploits1References1
Malwarebytes
Malwarebytes
added 2025/10/27 7:15 a.m.5 views

A week in security (October 20 – October 26)

Last week on Malwarebytes Labs: Is AI moving faster than its safety net? Thousands of online stores at risk as SessionReaper attacks spread Apple may have to open its walled garden to outside app stores Meta boosts scam protection on WhatsApp and Messenger Home Depot Halloween phish gives users a...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2025/10/23 5:47 a.m.7 views

Over 250 Magento Stores Hit Overnight as Hackers Exploit New Adobe Commerce Flaw

E-commerce security company Sansec has warned that threat actors have begun to exploit a recently disclosed security vulnerability in Adobe Commerce and Magento Open Source platforms, with more than 250 attack attempts recorded against multiple stores over the past 24 hours. The vulnerability in...

9.8CVSS9.8AI score0.99994EPSS
Exploits35
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-1875

Malware in sbrugna...

5.5CVSS6.4AI score0.00493EPSS
Exploits0References14
Rows per page
Query Builder