4196 matches found
MAL-2025-35953 Malicious code in test-mlw2-pedro-basic (npm)
The package test-mlw2-pedro-basic was found to contain malicious code...
Malicious code in ort-rn-basic-usage (npm)
The package ort-rn-basic-usage was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-30999 Malicious code in qdrant-node-js-basic-example (npm)
The package qdrant-node-js-basic-example was found to contain malicious code...
MAL-2025-28498 Malicious code in ort-rn-basic-usage (npm)
The package ort-rn-basic-usage was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-35086 Malicious code in test-mlw2-cleck-gault-nidal-basic (npm)
The package test-mlw2-cleck-gault-nidal-basic was found to contain malicious code...
Malicious code in test-mlw2-cleck-gault-nidal-basic (npm)
The package test-mlw2-cleck-gault-nidal-basic was found to contain malicious code...
Malicious code in Basic-Material-framework (npm)
The package Basic-Material-framework was found to contain malicious code...
Malicious code in basic-webpack-project (npm)
The package basic-webpack-project was found to contain malicious code...
MAL-2025-15505 Malicious code in Basic-Material-framework (npm)
The package Basic-Material-framework was found to contain malicious code...
PT-2025-33250 · Unknown · Radiustheme Classified Listing
Name of the Vulnerable Software and Affected Versions: RadiusTheme Classified Listing versions through 5.0.0 Description: The software contains an Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS issue that allows Code Injection. Recommendations: At the moment, there is...
CVE-2025-8834
A vulnerability has been found in JCG Link-net LW-N915R 17s.20.001.908. Affected is an unknown function of the file /wireless/basic.asp of the component Wireless Basic Settings Page. The manipulation of the argument Network Name leads to cross site scripting. It is possible to launch the attack...
CVE-2025-8825
A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This affects the function RPsetBasicAuto of the file /goform/RPsetBasicAuto. The manipulation of the argument staticIp/staticNetmask leads to os command injection. It is possible to initiat...
CVE-2025-8821
A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This issue affects the function RPsetBasic of the file /goform/RPsetBasic. The manipulation of the argument bssid leads to os command injection. The attack may be initiated remotely. The...
Exploit for Path Traversal in Rarlab Winrar
WinRAR-CVE-2025-8088-PoC-RAR WinRAR 0day CVE-2025-8088 PoC RA...
firefox: thunderbird: Incorrect URL stripping in CSP reports
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The username:password part is incorrectly stripped from URLs in CSP reports, potentially leaking HTTP Basic Authentication credentials...
CVE-2025-8765
A vulnerability classified as problematic was found in Datacom DM955 5GT 1200 825.8010.00. Affected by this vulnerability is an unknown functionality of the component Wireless Basic Settings. The manipulation of the argument SSID leads to cross site scripting. The attack can be launched remotely...
CVE-2025-7679 Session ID Basic Auth Bypass
The ASPECT system allows users to bypass authentication. This issue affects all versions of ASPECT...
CVE-2025-7679 Session ID Basic Auth Bypass
The ASPECT system allows users to bypass authentication. This issue affects all versions of ASPECT...
firefox: thunderbird: Incorrect URL stripping in CSP reports
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The username:password part is incorrectly stripped from URLs in CSP reports, potentially leaking HTTP Basic Authentication credentials...
firefox: thunderbird: Incorrect URL stripping in CSP reports
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The username:password part is incorrectly stripped from URLs in CSP reports, potentially leaking HTTP Basic Authentication credentials...