15493 matches found
MAL-2022-2042 Malicious code in com.meta.xr.sdk.empty (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5e176fd9c7eeccf86b6d27ce925141cb71fe32a6454ccd43e17ada8bfda1b25f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-669 Malicious code in @trimoz/trimoz-vue-error-handling (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a925050b7e354716fd169d1ca7abbb1479e679351df6b6563971fde19a704185 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-6183 Malicious code in sn-par-select (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2115af5e8c7f88004a13cc3253254769c561db84c32bde740ad847af36431692 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-220 Malicious code in @dydxprotocol/solo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 414b7a58031d755b2ab4f51d6bfc4bbaf5dad684161eab9b2d1062b8d4ce22df Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2271 Malicious code in ctct-theme (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7ec8a5a02626d6709343c4d1a23bcd6e8b88e9bfc66bbe832a8cedd7c0474575 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-4491 Malicious code in material-tailwindcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6ec41287cbcd54f97de58bebd79302854eab4c46d68300afdb5f1aeca9181df3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
10-Strike Network Inventory Explorer 安全漏洞
10-Strike Network Inventory Explorer is a scanning software from 10-Strike, Inc. for tracking hardware and software on networked computers. A security vulnerability exists in version v9.3 of 10-Strike Network Inventory Explorer that originates from a buffer overflow contained via the Add Computer...
Malicious code in luapkg (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1056631ef80f2163474304f3663a356bf91439fddc4227ea8e95cfbbdefce50 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-4418 Malicious code in luajit-stdlib (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 45b78e7ade789bb8def418f760cb87a5ee7cc0bf5135ba824d6de5872ef369e2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in selfbots-discord (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fdd02f7dae53a61aeaad39564c4c3265905c2518087360d0f2be2cafd48f3648 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2480 Malicious code in discord-canvases (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b82bd1049eebd0f7241e2e25c27fc0cad73ed8d0dcb0e4873400900e78aca350 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2521 Malicious code in discordjs-self-11 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd641445351530f4c4b5d778e7d019fd96bdbfa32458d966344a14f465cb421f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-6509 Malicious code in testdir12345 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9495556846ded2e31945f35514295ac0e4d08659ae81b7dfa225a399fa3522e3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in testdir12345 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9495556846ded2e31945f35514295ac0e4d08659ae81b7dfa225a399fa3522e3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5102 Malicious code in openswift (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f68aef6587be7704cbed243ef8633d132980652df6b47ce67d9e3c9aeaf26409 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
“Oops, I insecurely coded again!”
The call is coming from inside the house It’s no secret that companies need to be vigilant about application security. However, frequently the source of application vulnerabilities may come as a surprise to security teams. While zero-day exploits are a principal focus of vulnerability mitigation...
MAL-2022-3929 Malicious code in ion-schema-sandbox (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9b4a2800c0cdb5a431b4b8f4465ae513b1bde0d95be14f21a2fde8bb5f6733cc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-6480 Malicious code in test-hach (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a840b064eb2cb368dc4f28ba233162c810ec4f6d170cda2c82671a25e6be1126 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
The vulnerability of the SCSI am53c974 adapter driver in the hardware emulation software QEMU allows a hacker to induce a service failure.
The vulnerability of the SCSI am53c974 adapter driver in the QEMU hardware emulation software is related to pointer assignment errors. Exploiting this vulnerability allows an attacker to cause a system failure...
MAL-2022-4003 Malicious code in jaylen-db (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6a114193e3df663875466bf7d0bfec7b86abdc615da8f972a37418fafcb9f026 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...