5481 matches found
WordPress Product Slider Pro for WooCommerce < 3.5.4 - Supply Chain Backdoor RCE
Improper Validation of Specified Quantity in Input vulnerability in ShapedPlugin, LLC Product Slider Pro for WooCommerce allows Malicious Software Implanted. This issue affects Product Slider Pro for WooCommerce: from n/a before 3.5.4. id: CVE-2026-49777 info: name: WordPress Product Slider Pro f...
CVE-2026-46421
The CVE concerns a supply-chain compromise in the SAP Cloud Application Programming Model’s cap-js/cds-dbs monorepo. On 2026-04-29, compromised versions of @cap-js/[email protected], @cap-js/[email protected], and @cap-js/[email protected] were published; these malicious packages harvested credentials (n...
CVE-2026-61446
PraisonAI praisonaiagents before 1.6.78 contains a remote code execution vulnerability in the plugin manager, which loads and executes arbitrary Python .py files from project-level and user-home .praisonai/plugins/ directories using importlib specfromfilelocation and execmodule without code...
CVE-2026-61446
CVE-2026-61446 affects PraisonAI before 1.6.78. The plugin manager loads and executes arbitrary Python files from plugin directories using importlib and exec_module without code signing or sandboxing, enabling a local attacker who can write a malicious .py file to achieve arbitrary code execution...
CVE-2026-61446 PraisonAI before 1.6.78 Remote Code Execution via Plugin Auto-Discovery
PraisonAI praisonaiagents before 1.6.78 contains a remote code execution vulnerability in the plugin manager, which loads and executes arbitrary Python .py files from project-level and user-home .praisonai/plugins/ directories using importlib specfromfilelocation and execmodule without code...
Defending SaaS-based applications against ShinyHunters OAuth abuse
In this article 1. Attack chain overview 2. Improving visibility into Salesforce OAuth abuse 3. Mitigation and protection guidance 4. Learn more In a series of campaigns observed between mid-2025 and mid-2026, Microsoft identified threat actor activity with overlapping tradecraft commonly...
Malicious code in assertcoreutils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e53b085bfe045b4aeabe9ad77e1066ab0883f27304197377681191c3118b780 assertcoreutils impersonates the popular chai assertion library: the README, the chai keyword, the lib/chai/ directory layout, and lib/chai.js are...
MAL-2026-10491 Malicious code in assertcoreutils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e53b085bfe045b4aeabe9ad77e1066ab0883f27304197377681191c3118b780 assertcoreutils impersonates the popular chai assertion library: the README, the chai keyword, the lib/chai/ directory layout, and lib/chai.js are...
Malicious code in @oliviamcdaniel12/safer-buffer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55129478b44191f3a4bb3308036567d5e2eb1a73084511b424917b6b5f7bf50f Package impersonates the popular safer-buffer module. On require, safer.js reads a PID from Porting-Buffer.md and, if that process is not alive, spaw...
MAL-2026-10212 Malicious code in vuln-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8bd105bf3b12062f312b41f2a1eead5e8481f8d3749fc78bc79ed8675c11394 On npm install, the package's preinstall script triggers a DNS lookup to a unique subdomain of oast.fun fabekzbnjtufpffkzzmvjvi5eafhny3ok.oast.fun, a...
EUVD-2026-39125
SiYuan: Unauthenticated Admin API Access via Blanket chrome-extension:// Origin Allowlist...
Malicious code in zwknum2 (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 77416f217dfc0c67264840a77643c3e075fea102d4b9acd57e649b6cf6d00635 --- Credit: OpenSSF source...
Malicious code in zwag26 (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a0999faf4e28fb0827686d305bfa686a269d48e6b20cde157bce6ee8028b0fb0 --- Credit: OpenSSF source...
MAL-2026-9314 Malicious code in wbotbzr999 (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a7045ddfbb1e06fe865cd698104a2ebc751e28f8b9aaefef2dfb4d575e104593 --- Credit: OpenSSF source...
MAL-2026-9026 Malicious code in tryf0zz (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3ecfc4f10b4a0a251d04f14df2c54c8935ba397a5d3e145a0391af7a27473ee7 --- Credit: OpenSSF source...
Malicious code in prxca79e95716 (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8754560f5a3b52151c2a6a0c4303204507b369909a5fa0869588559537a8695c --- Credit: OpenSSF source...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code and was identified as part of the PolinRider supply chain campaign, linked to North Korean threat actors associated with the Contagious Interview/Famous Chollima activity...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code and was identified as part of the PolinRider supply chain campaign, linked to North Korean threat actors associated with the Contagious Interview/Famous Chollima activity...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code and was identified as part of the PolinRider supply chain campaign, linked to North Korean threat actors associated with the Contagious Interview/Famous Chollima activity...
CVE-2025-71372
Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran.getlincoef gadget in pickle reduce methods, allowing arbitrary code execution. Attackers can craft malicious pickle files that execute arbitrary Python code when loaded, bypassing Picklescan's safety checks and enabling...