CVE-2025-66086 WordPress SMS Alert Order Notifications plugin <= 3.8.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in Cozy Vision SMS Alert Order Notifications sms-alert allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SMS Alert Order Notifications: from n/a through = 3.8.8...

PT-2025-47795

Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 3.7.0 to before 4.12.0, fim alert implementation does not check whether oldsum-md5 is NULL or not before dereferencing it. A compromised agent can cause a crash of analysisd by sending a...

MAL-2025-190591 Malicious code in @ra-ide/extension-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a7aa2bba6ddffad751c19fd8291861f53b9994814f0cecb8925b7c2d5c87ae5 The package @ra-ide/extension-ui was found to contain malicious code. Source: ossf-package-analysis...

CVE-2025-10089

creationtimestamp| type| source ---|---|--- 2025-11-19 02:16:49+00:00| seen| https://bsky.app/profile/pmloik.bsky.social/post/3m5x6q5kqxd2q...

MAL-2025-190568 Malicious code in captcha-paypal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 358456d344b5a4b2a92cb9b9094bafcf797200b5a0b6549e46175fbbfff70fa4 The package captcha-paypal was found to contain malicious code. Source: ossf-package-analysis...

Malicious Package

Overview node-calculator-0f50 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Desktop Alert PingAlert Improper Access Control Vulnerability

Desktop Alert PingAlert is a network status monitoring tool developed by DesktopAlert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. Desktop Alert PingAlert suffers from an improper access control vulnerability that can be exploited by an attacker ...

Desktop Alert PingAlert Information Disclosure Vulnerability

Desktop Alert PingAlert is a network status monitoring tool developed by DesktopAlert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. Desktop Alert PingAlert suffers from an information disclosure vulnerability that originates from the exposure of...

Desktop Alert PingAlert Elevation of Privilege Vulnerability

Desktop Alert PingAlert is a network status monitoring tool developed by Desktop Alert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. Desktop Alert PingAlert suffers from an elevation of privilege vulnerability that stems from improper access...

Desktop Alert PingAlert Cross-Site Scripting Vulnerability

Desktop Alert PingAlert is a network status monitoring tool developed by Desktop Alert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. Desktop Alert PingAlert suffers from a cross-site scripting vulnerability for which no detailed vulnerability...

Desktop Alert PingAlert Information Disclosure Vulnerability (CNVD-2025-29404)

Desktop Alert PingAlert is a network status monitoring tool developed by Desktop Alert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. An information disclosure vulnerability exists in Desktop Alert PingAlert, which stems from a policy incompatibili...

Desktop Alert Unspecified Vulnerability in PingAlert

Desktop Alert PingAlert is a network status monitoring tool developed by DesktopAlert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. Desktop Alert PingAlert suffers from an unspecified vulnerability that originates from the disclosure of technical...

Desktop Alert PingAlert Improper Access Control Vulnerability (CNVD-2025-29430)

Desktop Alert PingAlert is a network status monitoring tool developed by Desktop Alert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. Desktop Alert PingAlert suffers from an Improper Access Control vulnerability that stems from improper access...

Desktop Alert PingAlert Server-Side Request Forgery Vulnerability

Desktop Alert PingAlert is a network status monitoring tool developed by Desktop Alert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. Desktop Alert PingAlert suffers from a server-side request forgery vulnerability, which stems from the server not...

Desktop Alert PingAlert Path Traversal Vulnerability

Desktop Alert PingAlert is a network status monitoring tool developed by DesktopAlert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. A path traversal vulnerability exists in Desktop Alert PingAlert, which can be exploited to load arbitrary external...

Desktop Alert Unspecified Vulnerability in PingAlert (CNVD-2025-29434)

Desktop Alert PingAlert is a network status monitoring tool developed by DesktopAlert, Inc. and is mainly used to monitor the status of network devices in real time and send alerts. An unspecified vulnerability exists in Desktop Alert PingAlert, which arises from the presence of corrupt or insecu...

Malicious code in node-calculator-feea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcb1a64b7f2fc6b55b2801e47c270a7f2ec6e8f80ba3c0689b044d9621131031 The package node-calculator-feea was found to contain malicious code...

MAL-2025-190539 Malicious code in node-calculator-b57e (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55fce009148ad3e1daee59968f79f4d2699c313e012d062e6fe9bf5aed9833f5 The package node-calculator-b57e was found to contain malicious code...

MAL-2025-190536 Malicious code in node-calculator-9b93 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca4159ce5d760e8b3aafb4cc81cea2f7125496bc6384c988d8de8644f8ca89e1 The package node-calculator-9b93 was found to contain malicious code...

Malicious code in node-calculator-de84 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6e62042563af1dc278d419cf42d6d695e1307cb6f1c141454167358b93860e7 The package node-calculator-de84 was found to contain malicious code...