Malicious code in scr-notification-system (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 14d05f282e7a70683de50d4006c1836acb08cf541a4ff5070fb01ad3697a9875 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-48332 Malicious code in mad-1.2.4.2.2.8 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1f60010de8eefe39801ac65a77f801b29b1d6cea45c11815a1194b266d2c5dbb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Linux Distros Unpatched Vulnerability : CVE-2023-53676

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function liotargetnaclinfoshow uses sprintf in a loop to print details for every iSCSI...

MAL-2025-48318 Malicious code in nodelog-lite (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c3f1413a6184e042f68d9e0cee79523ea3c0566535bb56e1e0b13370875fd8e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in pretty-format-setting (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 98ad5e7fdf5539b67cf7d13f5634890ff9db4c4ef4eafed348b91d26b8a6982d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2025-60307

code-projects Computer Laboratory System 1.0 has a SQL injection vulnerability, where entering a universal password in the Password field on the login page can bypass login attempts...

CVE-2025-60307

code-projects Computer Laboratory System 1.0 has a SQL injection vulnerability, where entering a universal password in the Password field on the login page can bypass login attempts...

MAL-2025-48300 Malicious code in lovable-ts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2bdd25899ff870aeb3b0ade0eb3b9d360a82f3a71dd4dd872e8f3dc4019ce982 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-48298 Malicious code in matrix-charts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ec928e940d4a9d80d7e512630b842c44283854acb9421a3ecb97c288f07fb7a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-48296 Malicious code in react-icons-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 832e2d8edc4d9458500162c7c8fcbc08139c2e9647f28e7d17b8b436f6951675 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in shakti-platform (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ca52c026a7d362e8dcd8046f9322539ce61e40b0508440b211d2ac62ae0889e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-48271 Malicious code in advertising-charts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3e0d648b7b4026cddfac170e95dee7ace2e607be7c21ce885f7ac237135e3478 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-48272 Malicious code in andes-react-floater (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 63aced74061cbadf118f22491f4edb9450b8ab612b289b34f3b0acefd7860d61 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-48274 Malicious code in cbt-gs-switcher-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 51e281e2aff0b1c284640210a317cb5796b2cfb60eccbb61d04d4cfe8941d3b2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Code-Projects Computer Laboratory System 安全漏洞

Computer Laboratory System is a computer laboratory system. The Computer Laboratory System suffers from a SQL injection vulnerability that originates from a lack of validation of an externally entered SQL statement in the password field of the login page, which can be exploited by an attacker to...

CVE-2025-60307

code-projects Computer Laboratory System 1.0 has a SQL injection vulnerability, where entering a universal password in the Password field on the login page can bypass login attempts...

CVE-2025-60307

code-projects Computer Laboratory System 1.0 has an SQL injection vulnerability in the login Password field, enabling authentication bypass by supplying a universal password. Root cause: lack of input validation for the Password parameter, allowing crafted SQL statements to bypass login validatio...

PT-2025-41575

Name of the Vulnerable Software and Affected Versions code-projects Computer Laboratory System version 1.0 Description The software contains a SQL injection flaw. Successful exploitation allows bypassing login attempts by entering a universal password in the Password field on the login page. The...

Malicious code in js-notifiers (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 516c8c2eb1e3c158b2e0c618c03ccee9b71d7aebe439a4ddbe2900a8fc518c7d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-copack (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 57401915f2c34bc9f6acd6172ce514016093a6857148c0d46ef0bad52792c357 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...