24 matches found
EUVD-2022-0386
Malicious code in bioql PyPI...
EUVD-2022-0371
Malicious code in bioql PyPI...
CVE-2022-44052
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-timezones package. The affected version of d8s-htm is 0.1.0...
CVE-2022-40808
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hypothesis package. The affected version is 0.1.0...
CVE-2022-44052
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-timezones package. The affected version of d8s-htm is 0.1.0...
PYSEC-2022-43075
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-timezones package. The affected version of d8s-htm is 0.1.0...
PYSEC-2022-43075
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-timezones package. The affected version of d8s-htm is 0.1.0...
PYSEC-2022-43126
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-timezones package. The affected version of d8s-htm is 0.1.0...
PT-2022-37338 · Pypi · D8S-Dates +2
Name of the Vulnerable Software and Affected Versions: d8s-dates version 0.1.0 d8s-htm version 0.1.0 Description: A potential code-execution backdoor was inserted by a third party into the d8s-dates package for python distributed on PyPI. Another affected package is democritus-timezones...
CVE-2022-44052
CVE-2022-44052 concerns the PyPI packaging chain for d8s-dates and its related components. The records indicate a potential code-execution backdoor inserted by a third party in the democritus-timezones package, with d8s-htm version 0.1.0 specifically mentioned as affected. The practical impact is...
Democritus Project 代码问题漏洞
Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. A security vulnerability exists in Democritus Project d8s-dates, which stems from the existence of a potential code execution backdoor inserted by a third party in the...
CVE-2022-44052
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-timezones package. The affected version of d8s-htm is 0.1.0...
PT-2022-27093 · D8S-Htm +1 · D8S-Htm +2
Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 d8s-dates affected versions not specified democritus-timezones affected versions not specified Description: A potential code-execution backdoor was inserted by a third party in the d8s-dates package for python, distribut...
PT-2022-37389 · Pypi · D8S-Dates +2
Name of the Vulnerable Software and Affected Versions: d8s-dates version 0.1.0 d8s-htm version 0.1.0 Description: A potential code-execution backdoor was inserted by a third party into the d8s-dates package for python distributed on PyPI. Another affected package is democritus-timezones...
CVE-2022-40808
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hypothesis package. The affected version is 0.1.0...
CVE-2022-40808
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hypothesis package. The affected version is 0.1.0...
d8s-dates (=0.1.0), d8s-dicts (=0.1.0) +5 more potentially affected by unknown CVE via democritus-hypothesis (=2021.1.2101)
democritus-hypothesis PYPI version =2021.1.2101 is affected by a known vulnerability. The following packages have a transitive dependency on democritus-hypothesis and may be impacted: - d8s-dates =0.1.0 - d8s-dicts =0.1.0 - d8s-domains =0.1.0 - d8s-ip-addresses =0.1.0 - d8s-strings =0.1.0 -...
PYSEC-2022-43105
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hypothesis package. The affected version is 0.1.0...
PYSEC-2022-43105
The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hypothesis package. The affected version is 0.1.0...
d8s-dates (=0.1.0) potentially affected by unknown CVE via democritus-timezones (=2021.1.201)
democritus-timezones PYPI version =2021.1.201 is affected by a known vulnerability. The following packages have a transitive dependency on democritus-timezones and may be impacted: - d8s-dates =0.1.0 Source cves: unknown CVE Source advisory: SNYK:PYTHON-DEMOCRITUSTIMEZONES-8400832...