15467 matches found
CVE-2025-11242
Server-Side Request Forgery SSRF vulnerability in Teknolist Computer Systems Software Publishing Industry and Trade Inc. Okulistik allows Server Side Request Forgery.This issue affects Okulistik: through 21102025...
Apple多款产品 安全漏洞
Apple iOS is an operating system developed for mobile devices. apple tvOS is an operating system for smart TVs. apple macOS is a specialized operating system developed for Mac computers. A security vulnerability exists in several Apple products that could be exploited by an attacker to disclose...
Apple macOS 安全漏洞
Apple macOS is a proprietary operating system developed by the American company Apple for Mac computers. Versions of Apple macOS Tahoe 26.3 and earlier contained a security vulnerability caused by permission issues, which could allow applications to access protected user data...
Malicious code in chai-as-approved (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f623e45c7742d5a9190e736f51777bae77297d5abeafd8c21679bd40b729034b The package chai-as-approved was found to contain malicious code. Source: ghsa-malware da0fdbfe00f6e097edd25bc90bfbac03e97c871951995b5d58f06b348d39c8...
MAL-2026-831 Malicious code in bigmathix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b200be57a4cdb466d56397968f69dd3845955ced56c5229608dbf03762106ff9 The package bigmathix was found to contain malicious code. Source: ghsa-malware 5fce43c0e03186c2441c8a54be7cb130625459fe9179665e242f223f0c7d2944 Any...
MAL-2026-834 Malicious code in graphflowx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4266b530d4c7c33d31f0b615033dac2a3a57218c537f1d13449342f0fbbc29b The package graphflowx was found to contain malicious code. Source: ghsa-malware d297a9f3d4e974972015d3869473fee386c696410e1746be7088d2ad5d0bf69e Any...
MAL-2026-827 Malicious code in narrow-array (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 508eafee6916ba29ade3caf0722e7bffe693e53fa35a4e74f0dc385950778f34 The package narrow-array was found to contain malicious code. Source: ghsa-malware 8bbee1a11c9aa9d6feb751063161f9802c6245890a9764cdddf190d3357df462 A...
CVE-2025-11242
CVE-2025-11242 is a Server-Side Request Forgery (SSRF) in Okulistik by Teknolist Computer Systems Software Publishing Industry and Trade Inc., affected through 21102025. The CVSS 3.1 base score is 9.8 (CRITICAL) with NETWORK attack vector, no privileges required, no user interaction, and high imp...
MAL-2026-819 Malicious code in json-mapping-sources (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77824e69a815d8ac27a50bb52fa0a39fe2c7e512e6597d3aefd500b0eae847e8 The package json-mapping-sources was found to contain malicious code. Source: ghsa-malware...
MAL-2026-807 Malicious code in web3-sinon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6990443632c3224a5e897d1747fcd76f782eda8d020447076d59cf305b03c82 The package web3-sinon was found to contain malicious code. Source: ghsa-malware 7d195e4b1eda9212f69e313de4107deae82670a9615ec25b86c8aaaf3df0e1f9 Any...
iPhone Lockdown Mode Protects Washington Post Reporter
404Media is reporting that the FBI could not access a reporter's iPhone because it had Lockdown Mode enabled: The court record shows what devices and data the FBI was able to ultimately access, and which devices it could not, after raiding the home of the reporter, Hannah Natanson, in January as...
Malicious code in @hashicorp-internal/vault-reporting (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85e2c508de22734977cac24ec430b5cfece85e6367f577df76caa740b5594eb7 The package @hashicorp-internal/vault-reporting was found to contain malicious code. Source: ghsa-malware...
CVE-2020-37142
10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting SEH records. Attackers can craft a malicious payload targeting the 'Computer' parameter during the 'Add' function to trigg...
CVE-2020-37142
10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting SEH records. Attackers can craft a malicious payload targeting the 'Computer' parameter during the 'Add' function to trigg...
CVE-2020-37142
10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow in the Add function that allows an attacker to execute arbitrary code by overwriting SEH records. A malicious payload targeting the Computer parameter can trigger remote code execution. Connected sou...
EUVD-2020-31036
10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting SEH records. Attackers can craft a malicious payload targeting the 'Computer' parameter during the 'Add' function to trigg...
CVE-2020-37142 10-Strike Network Inventory Explorer 8.54 - 'Add' Local Buffer Overflow (SEH)
10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting SEH records. Attackers can craft a malicious payload targeting the 'Computer' parameter during the 'Add' function to trigg...
MAL-2026-756 Malicious code in cat-retail-app (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28595a83aef3c3c9726d6ab0fc4b4d761a0a0c9f12ac91d4d84bda7135d46786 The package cat-retail-app was found to contain malicious code. Source: ghsa-malware b05f145df7999baec69425a057fe9a33c6a65726ca898c89b80cb23526f54bae...
MAL-2026-750 Malicious code in dspmobile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcd390d34dbfd7246c65b551f8b71dfaba4b78fa438e818cab41a0ea35716c21 The package dspmobile was found to contain malicious code. Source: ghsa-malware 73466b34e7f0da321f410baa9db15370fbf0563af429ef587315608e3507f2b6 Any...
Malicious code in dspmobile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcd390d34dbfd7246c65b551f8b71dfaba4b78fa438e818cab41a0ea35716c21 The package dspmobile was found to contain malicious code. Source: ghsa-malware 73466b34e7f0da321f410baa9db15370fbf0563af429ef587315608e3507f2b6 Any...