Lucene search
K

9 matches found

Snyk
Snyk
added 2026/06/16 11:41 p.m.4 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization in the checkTokenPublicOnly function. An attacker can access private organization data by using a public-only scoped API token to enumerate organizations, thereby bypassing intended access restrictions. Remediation...

5.3CVSS5.9AI score0.00271EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/25 4:10 a.m.3 views

Malicious Package

Overview @sev-ui-verse/workflow-context is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and thi...

9.8CVSS6.8AI score
Exploits0References2
OSV
OSV
added 2025/09/25 4:10 a.m.2 views

MAL-2025-47548 Malicious code in @sev-ui-verse/workflow-context (npm)

The package @sev-ui-verse/workflow-context was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b34fd25464abdc87cdcff95770eff1bf8f142ad5407a6487236fcc5c76f72f14 Any computer that has this package installed or running should be...

6.9AI score
Exploits0References3
Snyk
Snyk
added 2025/09/15 7:39 a.m.4 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...

9.8CVSS7AI score
Exploits0References2
OSV
OSV
added 2025/07/22 4:30 p.m.4 views

MAL-2025-6129 Malicious code in spring-context (npm)

The package communicates with a domain associated with malicious activity...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/22 4:30 p.m.7 views

Malicious code in spring-context (npm)

The package communicates with a domain associated with malicious activity...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/19 11:45 a.m.5 views

Malicious code in grid-context (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b3f459ed60b15a8a5c508fed9f7ebd2f7707ebbb1420e814add93920322749ea Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/11/05 12:0 a.m.16 views

Debian dla-3946 : context - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-3946 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3946-1 [email protected] https://www.debian.org/lts/security/...

8.8CVSS7.3AI score0.00804EPSS
Exploits0References4
OSV
OSV
added 2023/11/09 9:10 p.m.14 views

MAL-2023-8491 Malicious code in one-host-app-context (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c17ed3eae2517098a0d480f80d6166610d23a6d0e082bf72cc8853b96a71a613 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Rows per page
Query Builder