EUVD-2025-106563

Malicious code in appropriatezebraz3n npm...

EUVD-2025-77745

Malicious code in appropriateunicornz3n npm...

Malicious code in appropriate_locust_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7384c6c11c53a87ff60048e5c44a1dc9b29182d8ab3178a67b0fc40dbd0e2aa9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-79793

Malicious code in appropriatemollusk0xrequest npm...

EUVD-2025-71670

Malicious code in appropriatewolverinez3n npm...

EUVD-2025-65297

Malicious code in appropriatekiwiz3n npm...

EUVD-2025-55831

Malicious code in appropriate-amaranth-elephant npm...

EUVD-2025-55826

Malicious code in appropriate-tan-guanaco npm...

EUVD-2025-55828

Malicious code in appropriate-jade-iguana npm...

EUVD-2025-55830

Malicious code in appropriate-amaranth-tuna npm...

EUVD-2025-55827

Malicious code in appropriate-purple-dormouse npm...

EUVD-2025-60735

Malicious code in appropriateoctopusz3n npm...

EUVD-2025-60736

Malicious code in appropriategalliformz3n npm...

Malicious code in soap-lie-appropriate (npm)

The package soap-lie-appropriate was found to contain malicious code...

MAL-2025-46101 Malicious code in soap-lie-appropriate (npm)

The package soap-lie-appropriate was found to contain malicious code...

CVE-2024-28956

Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

GHSA-5GMF-3C43-Q73V ZendFramework vulnerable to Cross-site Scripting

Zend\Debug, Zend\Feed\PubSubHubbub, Zend\Log\Formatter\Xml, Zend\Tag\Cloud\Decorator, Zend\Uri, Zend\View\Helper\HeadStyle, Zend\View\Helper\Navigation\Sitemap, and Zend\View\Helper\Placeholder\Container\AbstractStandalone were not using Zend\Escaper when escaping HTML, HTML attributes, and/or...

Input validation

Improper input validation vulnerability in E-mail of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated to alter the data of E-mail without the appropriate privilege...

Design/Logic Flaw

In all versions of FactoryTalk View SEA remote, an authenticated attacker may be able to utilize certain handlers to interact with the data on the remote endpoint since those handlers do not enforce appropriate permissions. Rockwell Automation recommends enabling built in security features found...

news.worldofo.com Cross Site Scripting vulnerability OBB-1165928

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...