Lucene search
K

15493 matches found

OSV
OSV
added 2023/08/08 4:25 a.m.14 views

MAL-2023-1059 Malicious code in my-fallen-fallen-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f31e79019d42645171a0a0457db1d85815664700b6a48f72e42d4ca92025f5da Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/08/08 12:0 a.m.6 views

The vulnerability of the software for creating and managing graphical interfaces for user applications on industrial computers (iPC) and personal computers (PC/AT) – GP-Pro EX WinGP – arises from the operation of operations beyond the buffer in memory. This vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of software for creating and managing graphical interfaces for user applications on industrial computers iPC and personal computers PC/AT like GP-Pro EX WinGP lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an...

7.8CVSS6.3AI score0.00168EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/08/07 9:15 a.m.5 views

MAL-2023-1072 Malicious code in apple-fallen-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 570472e2369c7c7b093aef202a4e630b9f98eed13e6ae9afbeb6857976e870c9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/08/07 8:28 a.m.2 views

Malicious code in discorddd (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4843fe6e7451a467d24bf9d44860ca2ba49c8039973ec393ec9ae10c6f68c9a7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2023/08/07 8:28 a.m.6 views

MAL-2023-1054 Malicious code in saaaaaaaaaaaaaaaaaaaaaaa (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 58852786247bbb581d1c869d8add4aee571bea41703c4f6dcf92b3c40ace718f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2023/08/07 8:28 a.m.8 views

MAL-2023-1049 Malicious code in discordd.jss (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d8ba506117e7c7f49158ad840669844fa4e7893e715370eb8bc3fd032617dd36 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/08/07 8:3 a.m.2 views

Malicious code in oy-cms-analytics (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2be7374107b4ac9e28374ee29999f89a1644a7e262cf175cbd223a15958025f6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References2
OSV
OSV
added 2023/08/07 8:2 a.m.8 views

MAL-2023-1047 Malicious code in @oyshoweb/front (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fc793cbc35cbd69fb4c7bbb4873d0b7a480c013daa6e004215c2455290cab3e1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Veracode
Veracode
added 2023/08/07 2:8 a.m.27 views

Improper Authorization

chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability to impersonate a trusted website and trick the user into performing actions such as revealing sensitive information or installing malware. This could have serious consequences for the victim, such as...

4.3CVSS6.5AI score0.00801EPSS
Exploits0References8Affected Software1
Veracode
Veracode
added 2023/08/07 2:8 a.m.24 views

Improper Authorization

chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability to impersonate a trusted website and trick the user into performing actions such as revealing sensitive information or installing malware. This could have serious consequences for the victim, such as...

4.3CVSS6.5AI score0.00645EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2023/08/05 7:22 p.m.5 views

MAL-2023-1058 Malicious code in infocaster-frontend-bootstrap-4-starter (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c55745943f07b53663bfc73b3b50663ca02b9b94e8897b082272ea0be460c533 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7.2AI score
Exploits0References1
OSV
OSV
added 2023/08/04 4:0 p.m.12 views

MAL-2023-1048 Malicious code in discordd (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 97c4e88528a7231605ac5b8ffbae0eb705d1b7cbd05d44bc72f4d26f6b7db7fb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2023/08/04 12:4 p.m.12 views

MAL-2023-1052 Malicious code in my-fallen-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e7c1f73f0c85f62e81e5bb2b99f08089c34ecaa76487bac79f482b75c131ef13 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7.2AI score
Exploits0References1
OSV
OSV
added 2023/08/04 12:0 a.m.12 views

MAL-2023-1056 Malicious code in binarium-crm (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 0319a4b526e85c3f33642aef37de9fb6a431f79dc995b4829c1bf12b854d8721 Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

7.2AI score
Exploits0References2
Malwarebytes
Malwarebytes
added 2023/08/03 11:0 a.m.11 views

Hey, are you REALLY ready to go on vacation? (No, you aren't)

Are you ready for a challenge? A real challenge? Do you laugh in the face of shark cages, scoff at the Marathon des Sables, and waft a dismissive finger in the direction of the Everest ascent? Are you ready to conquer the impossible? If so, then you might be ready for the ultimate challenge--taki...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2023/08/01 11:11 a.m.13 views

Hacking AI Resume Screening with Text in a White Font

The Washington Post is reporting on a hack to fool automatic resume sorting programs: putting text in a white font. The idea is that the programs rely primarily on simple pattern matching, and the trick is to copy a list of relevant keywords--or the published job description--into the resume in a...

6.9AI score
Exploits0
OSV
OSV
added 2023/08/01 5:35 a.m.15 views

MAL-2023-1029 Malicious code in bluehost-wordpress-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 130f9a8e36740fd2a40d384f49218d898cfa0a619be16a71621770c1eed31c15 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/08/01 5:29 a.m.3 views

Malicious code in flot-axis (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 75e800a2dadaa8f5d0ac8a5db1564e97a702c66176c2da0c537191d88cf8fc81 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2023/08/01 5:29 a.m.9 views

MAL-2023-1040 Malicious code in testhacknowz (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f8e35447833146cb97e01cbf36881b7d380caaacdef83cf1e276f822b288284b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2023/08/01 5:29 a.m.11 views

MAL-2023-1036 Malicious code in hackzvijay (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware baa21bf2e50d46d8e86793d9a3b251a8fa8a72c0d1ca1086e4f68817a48a9d6b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Rows per page
Query Builder