Lucene search
K

4 matches found

The Hacker News
The Hacker News
added 2026/01/26 3:43 p.m.17 views

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code VS Code extensions that are advertised as artificial intelligence AI-powered coding assistants, but also harbor covert functionality to siphon developer data to China-based servers. The extensions, which have 1.5...

9.8CVSS6.2AI score0.01023EPSS
Exploits2
The Hacker News
The Hacker News
added 2026/01/13 7:15 a.m.9 views

CISA Warns of Active Exploitation of Gogs Vulnerability Enabling Code Execution

The U.S. Cybersecurity and Infrastructure Security Agency CISA has warned of active exploitation of a high-severity security flaw impacting Gogs by adding it to its Known Exploited Vulnerabilities KEV catalog. The vulnerability, tracked as CVE-2025-8110 CVSS score: 8.7, relates to a case of path...

8.8CVSS8.2AI score0.7654EPSS
Exploits18
ATTACKERKB
ATTACKERKB
added 2022/03/11 11:15 p.m.4 views

CVE-2021-41849

An issue was discovered in Luna Simo PPR1.180610.011/202001031830. It sends the following Personally Identifiable Information PII in plaintext using HTTP to servers located in China: user's list of installed apps and device International Mobile Equipment Identity IMEI. This PII is transmitted to...

5.5CVSS6.1AI score0.00247EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2022/03/11 12:0 a.m.5 views

PT-2022-11500 · Luna Simo · Luna Simo

Name of the Vulnerable Software and Affected Versions: Luna Simo PPR1.180610.011/202001031830 Description: An issue was discovered in Luna Simo where it sends Personally Identifiable Information PII in plaintext using HTTP to servers located in China. The PII includes the user's list of installed...

5.5CVSS5.3AI score0.00247EPSS
Exploits1References6
Rows per page
Query Builder