10971 matches found
Malicious code in parse-tree-array-function-decode (npm)
The package parse-tree-array-function-decode was found to contain malicious code...
MAL-2025-32877 Malicious code in secure-daemon-bash-code-array (npm)
The package secure-daemon-bash-code-array was found to contain malicious code...
MAL-2025-28881 Malicious code in parse-tree-array-function-decode (npm)
The package parse-tree-array-function-decode was found to contain malicious code...
Malicious code in just-array-unique (npm)
The package just-array-unique was found to contain malicious code...
Malicious code in just-array-flatten (npm)
The package just-array-flatten was found to contain malicious code...
MAL-2025-24113 Malicious code in just-array-remove (npm)
The package just-array-remove was found to contain malicious code...
MAL-2025-33442 Malicious code in small-private-integer-array-deploy (npm)
The package small-private-integer-array-deploy was found to contain malicious code...
Malicious code in just-array-remove (npm)
The package just-array-remove was found to contain malicious code...
Malicious code in just-array-intersect (npm)
The package just-array-intersect was found to contain malicious code...
watch-array (>=0.0.0 <=0.0.4) potentially affected by unknown CVE via new-list (>=0.0.5 <=2.0.0)
new-list NPM version =0.0.5, =0.0.0, =0.0.4 Source cves: unknown CVE Source advisory: OSV:MAL-2025-27362...
Malicious code in just-array-last (npm)
The package just-array-last was found to contain malicious code...
MAL-2025-24111 Malicious code in just-array-intersect (npm)
The package just-array-intersect was found to contain malicious code...
MAL-2025-14864 Malicious code in array-wind-user-data-rain (npm)
The package array-wind-user-data-rain was found to contain malicious code...
MAL-2025-38802 Malicious code in watch-array (npm)
The package watch-array was found to contain malicious code...
(Pwn2Own) Microsoft Windows 11 vhdmp Improper Validation of Array Index Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Virtual Hard...
CISA: FY 2025 State and Local Cybersecurity Grant Program FAQs
Congress established the State and Local Cybersecurity Grant Program SLCGP to "award grants to eligible entities to address cybersecurity risks and cybersecurity threats to information systems owned or operated by, or on behalf of, state, local, or Tribal governments." Within the U.S. Department ...
Linux Distros Unpatched Vulnerability : CVE-2023-52599
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jfs: fix array-index-out-of-bounds in diNewExt Syz report UBSAN: array-index-out-of-bounds in fs/jfs/jfsimap.c:2360:2 index -878706688 is out of range for type...
Linux Distros Unpatched Vulnerability : CVE-2024-38623
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Use variable length array instead of fixed size Should fix smatch warning:...
Securing Educational LLMs: a Generalised Taxonomy of Attacks on LLMs and DREAD Risk Assessment
Due to perceptions of efficiency and significant productivity gains, various organisations, including in education, are adopting Large Language Models LLMs into their workflows. Educator-facing, learner-facing, and institution-facing LLMs, collectively, Educational Large Language Models eLLMs,...
BIT-LIBPHP-2024-5585 Command injection via array-ish $command parameter of proc_open() (bypass CVE-2024-1874 fix)
In PHP versions 8.1. before 8.1.29, 8.2. before 8.2.20, 8.3. before 8.3.8, the fix for CVE-2024-1874 does not work if the command name includes trailing spaces. Original issue: when using procopen command with array syntax, due to insufficient escaping, if the arguments of the executed command ar...