Lucene search
K

7 matches found

EUVD
EUVD
added 2025/11/11 12:41 a.m.2 views

EUVD-2025-55040

Malicious code in daily-green-hawk npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 12:41 a.m.3 views

Malicious code in daily-green-hawk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4743d24a01477230ba6fcc7e5883b11236d12335f77de3fe807d66f886a7b4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/11 12:41 a.m.2 views

MAL-2025-67609 Malicious code in daily-green-hawk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4743d24a01477230ba6fcc7e5883b11236d12335f77de3fe807d66f886a7b4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
NVD
NVD
added 2014/10/21 10:55 a.m.13 views

CVE-2014-7800

The Daily Green aka it.opentt.blog.dailygreen application 2014.07 dlygrn for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
Prion
Prion
added 2014/10/21 10:55 a.m.15 views

Information disclosure

The Daily Green aka it.opentt.blog.dailygreen application 2014.07 dlygrn for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/21 10:0 a.m.17 views

CVE-2014-7800

The Daily Green aka it.opentt.blog.dailygreen application 2014.07 dlygrn for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
CVE
CVE
added 2014/10/21 10:0 a.m.41 views

CVE-2014-7800

The CVE-2014-7800 entry concerns The Daily Green (Android app, 2014.07 dlygrn) that does not verify X.509 certificates when connecting to SSL servers. The root cause is missing TLS certificate validation, enabling man-in-the-middle attackers to spoof servers and potentially disclose sensitive inf...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder