ai.catboost:catboost-spark_3.5_2.12 (>=1.2.3 <=1.2.10), ai.djl.spark:spark_2.12 (=0.29.0) +265 more potentially affected by CVE-2025-55039 via org.apache.spark:spark-network-common_2.12 (>=3.5.0 <=3.5.1)

org.apache.spark:spark-network-common2.12 MAVEN version =3.5.0, =1.2.3, =3.44.0.1-1-3.5, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =0.6.17, =0.0.3, =14.0.0, =14.0.0, =14.0.0, =14.17.1 - bio.ferlab:obo-parser2.12 =1.3.1 and more Source cves: CVE-2025-55039 Source advisory:...

EUVD-2016-2140

Malware in sbrugna...

Malicious Package

Overview sb1-adobe-analytics is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this packa...

Malicious code in sb1-adobe-analytics (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fa32f2eeba04b7aba401cd8d0132bbd7069239d1c9bd7662831eefec6ccdc5e1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-5942 Malicious code in sb1-adobe-analytics (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fa32f2eeba04b7aba401cd8d0132bbd7069239d1c9bd7662831eefec6ccdc5e1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2016-1036

Cross-site scripting XSS vulnerability in Adobe Analytics AppMeasurement for Flash Library before 4.0.1, when debugTracking is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in Adobe Analytics AppMeasurement for Flash Library before 4.0.1, when debugTracking is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2016-1036

Adobe Analytics AppMeasurement for Flash Library is affected by CVE-2016-1036 prior to version 4.0.1. The vulnerability is a DOM-based XSS flaw that can be triggered when debugTracking is enabled, allowing remote attackers to inject arbitrary script/HTML and potentially hijack user sessions or ac...