MAL-2026-4486 Malicious code in atomic-notes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c70dcf4fd11ae58bf4e06b896b2f163d54e3c3a26b66d472bab1e0af126f6f81 package.json declares preinstall:./.github/scripts/precheck, which executes a 976 KB stripped, UPX-packed Linux x8664 ELF shipped at...

pyLoad 操作系统命令注入漏洞

pyLoad is pyLoad open source a free open source download manager written in Python. An OS command injection vulnerability exists in pyLoad version 0.5.0, which stems from improper privilege handling and allows an attacker to remotely execute code by changing the download folder to the /scripts pa...

PT-2022-21905 · Debian +1 · Debian +1

Name of the Vulnerable Software and Affected Versions: Checkmk versions 1.6 through 1.6.9p29 Checkmk versions 2.0 through 2.0.0p26 Checkmk versions 2.1 through 2.1.0p3 Checkmk version 2.2.0i1 Description: A permission issue affects users that deployed the shipped version of the Checkmk Debian...

UBUNTU-CVE-2019-7653

The Debian python-rdflib-tools 4.2.2-1 package for RDFLib 4.2.2 has CLI tools that can load Python modules from the current working directory, allowing code injection, because "python -m" looks in this directory, as demonstrated by rdf2dot. This issue is specific to use of the debian/scripts...