@certd/commercial-core (>=1.25.9 <=1.40.5), @certd/lib-server (>=1.36.25 <=1.40.5) +32 more potentially affected by CVE-2025-62595 via koa (=2.16.2)

koa NPM version =2.16.2 is affected by a known vulnerability. The following packages have a transitive dependency on koa and may be impacted: - @certd/commercial-core =1.25.9, =1.36.25, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =0.19.3, =3.20.11,...

EUVD-2025-35120

A post-authentication command injection vulnerability in Zyxel ATP series firmware versions from V4.32 through V5.40, USG FLEX series firmware versions from V4.50 through V5.40, USG FLEX 50W series firmware versions from V4.16 through V5.40, and USG20W-VPN series firmware versions from V4.16...

vulnlog-poc

Vulnlog Proof of Concepts YAML and JSON Schema PoC - y...

doge_dns (>=0.2.4-beta <=1.0.2), rev-up-your-harley (>=0.1.0 <=1.0.1) +4 more potentially affected by unknown CVE via unic-idna-mapping (>=0.4.0 <=0.9.0)

unic-idna-mapping CARGO version =0.4.0, =0.2.4-beta, =0.1.0, =0.1.0, =0.5.0, =0.7.0, =0.4.0, =0.9.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0097...

rev-up-your-harley (>=0.1.0 <=1.0.1), rustpython-vm (>=0.1.0 <=0.1.1) +2 more potentially affected by unknown CVE via unic-emoji (>=0.7.0 <=0.9.0)

unic-emoji CARGO version =0.7.0, =0.1.0, =0.1.0, =0.7.0, =0.7.0, =0.9.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0084...

`unic-cli` is unmaintained

All Unicode crates that are part of https://github.com/open-i18n/rust-unic are unmaintained...

rev-up-your-harley (>=0.1.0 <=1.0.1), rustpython-vm (>=0.1.0 <=0.1.1) +1 more potentially affected by unknown CVE via unic (>=0.7.0 <=0.9.0)

unic CARGO version =0.7.0, =0.1.0, =0.1.0, =0.7.0, =0.9.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0095...

RUSTSEC-2025-0087 `unic-cli` is unmaintained

All Unicode crates that are part of https://github.com/open-i18n/rust-unic are unmaintained...

Exploit for CVE-2017-0144

ExploitdbPro - Enhanced Edition Enhanced CLI tool for Exploit...

CVE-2025-62375 vulnerabilities

Vulnerabilities for packages: tkn, tekton-chains...

@cognigy/cognigy-cli (>=1.9.1 <=1.9.4), @iharkharytanovich/found (>=0.1.1 <=0.1.2) +2 more potentially affected by CVE-2025-11849 via mammoth (>=0.3.33 <=1.10.0)

mammoth NPM version =0.3.33, =1.9.1, =0.1.1, =1.0.0, =1.0.4 - youseeu =1.0.0 Source cves: CVE-2025-11849 Source advisory: OSV:GHSA-RMJR-87WV-GF87...

Malicious code in swagger-express-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware df82c080a9679b5742e676bdbeae1f2d4f81a3ba9794c93d5c12deb3df539951 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

EUVD-2025-34839

Malicious code in swagger-express-cli npm...

Malicious Package

Overview swagger-express-cli is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

MAL-2025-48439 Malicious code in swagger-express-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware df82c080a9679b5742e676bdbeae1f2d4f81a3ba9794c93d5c12deb3df539951 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

ArubaOS 8.10.x < 8.10.0.19 / 8.12.x < 8.12.0.6 / 8.13.x < 8.13.1.0 / 10.4.x < 10.4.1.9 / 10.7.x < 10.7.2.1 Multiple Vulnerabilities (HPESBNW04957)

The version of ArubaOS installed on the remote host is affected by multiple vulnerabilities as referenced in the HPESBNW04957 advisory: - An arbitrary file write vulnerability exists in the web-based management interface of both the AOS-10 GW and AOS-8 Controller/Mobility Conductor operating...

Malicious Package

Overview mongose-cli is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

Malicious Package

Overview eslint-validation-cli is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious Package

Overview lovable-cli is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

Malicious Package

Overview babel-cli-ganache is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...