Broken hard revocation handling

Before sq-git checks if a commit can be authenticated, it first looks for hard revocations. Because parsing a policy is expensive and a project's policy rarely changes, sq-git has an optimization to only check a policy if it hasn't checked it before. It does this by maintaining a set of policies...

5gasp-cli (>=0.1.0 <=0.4.0), ablator (=0.0.1b3) +353 more potentially affected by CVE-2026-22702 via virtualenv (>=12.1.1 <=20.35.4)

virtualenv PYPI version =12.1.1, =0.1.0, =2.0.1, =0.0.2, =0.1.0, =0.0.1a0, =0.2.0, =0.6.1.91, =1.5.0, =2024.7.4, =0.8.3b20230820, =0.8.3b20231012, =1.0.1b20240404 and more Source cves: CVE-2026-22702 Source advisory: OSV:GHSA-597G-3PHW-6986...

EUVD-2025-204945

Malicious code in alicenpmpackage npm...

MAL-2025-192595 Malicious code in smart-utils-alice (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2de5b916487c66ac49dea93a8859097db125ab6c1b8ea18a72bd3f72cdcfaff6 The package smart-utils-alice was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-203514

Malicious code in smart-utils-alice npm...

Malicious Package

Overview smart-utils-alice is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious code in smart-utils-alice (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2de5b916487c66ac49dea93a8859097db125ab6c1b8ea18a72bd3f72cdcfaff6 The package smart-utils-alice was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-198286

Malicious code in alicenpmpocpackage npm...

Alice Blue Partners with AccuKnox for Regulatory Compliance

Menlo Park, CA, November 17th, 2025, CyberNewsWire...

EUVD-2008-7124

Malware in sbrugna...

EUVD-2018-19227

Malware in sbrugna...

EUVD-2006-5418

Malware in sbrugna...

An Adversarial Quantum Key Distribution Project

Quantum key distribution QKD is a popular introduction to quantum technologies used in education and public outreach, as very little background in quantum theory is needed and the practical applications are easily understood. There is considerably less exposure to the many real-world consideratio...

aliceforchildren.it Cross Site Scripting vulnerability OBB-3475341

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Redeemers will receive less collateral than expected if function completeRedemptions() is called with empty refundees list

Lines of code Vulnerability details Impact Function completeRedemptions is used by admin account to distribute collateral to users and also to refund redemption requests if the redemption cannot be serviced. function completeRedemptions address calldata redeemers, address calldata refundees,...

Researchers Reveal Details of New Threats: AXLocker, Octocrypt and Alice Ransomware

By Deeba Ahmed AXLocker ransomware is now known as a threat that targets Discord users. This is a post from HackRead.com Read the original post: Researchers Reveal Details of New Threats: AXLocker, Octocrypt and Alice Ransomware...

Malicious code in @alice-bob/com.alice.adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 90cad1ecdb82a3b682d758bf5ac96c012458d22c4632d480caff86f1790a207a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Incorrect accounting of free weight in _decrementWeightUntilFree

Lines of code Vulnerability details Impact In decrementWeightUntilFree, the free weight is calculated by balanceOfuser - getUserWeightuser plus weight freed from non-deprecated gauges. The non-deprecated criteria is unnecessary and lead to incorrect accounting of free weight. Proof of Concept...

alice-gerfault.com Improper Access Control vulnerability OBB-2213995

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Mozilla Thunderbird 安全漏洞

Mozilla Thunderbird is a set of the United States Mozilla Foundation from the Mozilla Application Suite independent of the e-mail client software. A security bypass vulnerability exists in versions of MThunderbird prior to 78.9.1, which can be exploited by an attacker to send unencrypted e-mail t...