Lucene search
+L

15 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-0067

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01012EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/05/23 12:6 a.m.9 views

CVE-2022-44048

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0...

9.8CVSS7.4AI score0.01012EPSS
Exploits0References1
nvd
nvd
added 2022/11/07 3:15 p.m.21 views

CVE-2022-44048

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0...

9.8CVSS0.01012EPSS
Exploits0References3
osv
osv
added 2022/11/07 3:15 p.m.13 views

CVE-2022-44048

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0...

9.8CVSS7.4AI score0.01012EPSS
Exploits0References3
pypa
pypa
added 2022/11/07 3:15 p.m.5 views

PYSEC-2022-43097

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0...

9.8CVSS7.6AI score0.01012EPSS
Exploits0References3Affected Software1
osv
osv
added 2022/11/07 3:15 p.m.5 views

PYSEC-2022-43091

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0...

9.8CVSS6.3AI score
Exploits0References3
pypa
pypa
added 2022/11/07 3:15 p.m.7 views

PYSEC-2022-43091

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0...

9.8CVSS7.6AI score0.01012EPSS
Exploits0References3Affected Software1
osv
osv
added 2022/11/07 3:15 p.m.3 views

PYSEC-2022-43097

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0...

9.8CVSS7.7AI score
Exploits0References3
ptsecurity
ptsecurity
added 2022/11/07 12:0 a.m.3 views

PT-2022-37354 · Unknown +2 · Democritus-Domains +2

Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 democritus-domains affected versions not specified Description: A potential code-execution backdoor was inserted by a third party into the d8s-urls for python distributed on PyPI. The democritus-domains package also...

9.8CVSS7.5AI score
Exploits0References4
ptsecurity
ptsecurity
added 2022/11/07 12:0 a.m.2 views

PT-2022-37360 · Unknown +2 · Democritus-Domains +2

Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 democritus-domains affected versions not specified Description: A potential code-execution backdoor was inserted by a third party into the d8s-urls for python distributed on PyPI. The democritus-domains package also...

9.8CVSS7.5AI score
Exploits0References4
cve
cve
added 2022/11/07 12:0 a.m.45 views

CVE-2022-44048

CVE-2022-44048 describes a backdoor inserted by a third party into the PyPI distribution d8s-urls for Python, implicating the democritus-domains package. The affected software component includes d8s-htm version 0.1.0. Connected advisories indicate this results in potential code execution and reco...

9.8CVSS9.7AI score0.01012EPSS
Exploits0References3Affected Software1
vulnrichment
vulnrichment
added 2022/11/07 12:0 a.m.6 views

CVE-2022-44048

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0...

9.8AI score0.01012EPSS
Exploits0References3
cvelist
cvelist
added 2022/11/07 12:0 a.m.23 views

CVE-2022-44048

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0...

9.9AI score0.01012EPSS
Exploits0References3
snyk
snyk
added 2022/09/19 3:15 p.m.2 views

Malicious Package

Overview democritus-domains is a malicious package. This package is used for dependency confusion attempts and contains malicious code. The package now exists as a placeholder on PyPI. Remediation Avoid using all malicious instances of the democritus-domains package. References - GitHub Issue -...

9.8CVSS6.9AI score
Exploits0References3
vulnersosv
vulnersosv
added 2022/09/19 3:15 p.m.3 views

d8s-urls (=0.1.0) potentially affected by unknown CVE via democritus-domains (=2021.1.2101)

democritus-domains PYPI version =2021.1.2101 is affected by a known vulnerability. The following packages have a transitive dependency on democritus-domains and may be impacted: - d8s-urls =0.1.0 Source cves: unknown CVE Source advisory: SNYK:PYTHON-DEMOCRITUSDOMAINS-8400830...

5.8AI score
Exploits0
Rows per page
Query Builder