721 matches found
Malicious Package
Overview ing-feat-malware-detection is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
JFrog Artifactory Artifacts Repository Detected
JFrog Artifactory is a popular repository management tool used to store and manage software artifacts. If the Artifacts repository is detected and accessible, it may expose sensitive information or allow unauthorized access to stored artifacts. No source data...
EUVD-2026-0053
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0707
A vulnerability was identified in jackying H-ui.admin up to 3.1. This affects an unknown function in the library /lib/webuploader/0.1.5/server/preview.php. The manipulation leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit is publicly available and might...
EUVD-2023-60438
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-out-of-bounds in initsmb2rsphdr When smb1 mount fails, KASAN detect slab-out-of-bounds in initsmb2rsphdr like the following one. For smb1 negotiate56bytes , initsmb2rsphdr for smb2 is called. The issue occurs whil...
EUVD-2025-205685
A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. This affects the function init of the file src/main/java/com/sohu/cache/web/controller/LoginController.java. The manipulation results in cross site scripting. The attack may be launched remotely. The exploit is now public and may be...
EUVD-2025-204020
A security vulnerability has been detected in yproject RuoYi up to 4.8.1. The affected element is an unknown function of the file /monitor/cache/getnames. Such manipulation of the argument fragment leads to code injection. The attack can be executed remotely. The exploit has been disclosed public...
MAL-2025-192503 Malicious code in elf-stats-fuzzy-workbench-102 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6885087c0bc44815f87570e3ea126e735bb65b5f4cb443a1adc04915c7ac8959 The package elf-stats-fuzzy-workbench-102 was found to contain malicious code...
MAL-2025-192540 Malicious code in elf-stats-twinkling-wishlist-283 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a1a452b742f4800816cfb6c0ba402349ea379403ebbecc9c9d092416096336a The package elf-stats-twinkling-wishlist-283 was found to contain malicious code...
MAL-2025-192496 Malicious code in elf-stats-evergreen-satchel-868 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3612299385305c5a1cd65f55917676d9691d4bc50302824f775e7b676d44b599 The package elf-stats-evergreen-satchel-868 was found to contain malicious code...
MAL-2025-192508 Malicious code in elf-stats-jolly-ornament-687 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c696ff217f3b5fb230585fa3669d644df5d07b6d686687fa50639da0dbaacea7 The package elf-stats-jolly-ornament-687 was found to contain malicious code...
Malicious Package
Overview allow-deny is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
Malicious code in elf-stats-cheery-chimney-392 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29de96c126bbcd60fca9d21e841b70b86313faf1c9921770856b9c932f17a11c The package elf-stats-cheery-chimney-392 was found to contain malicious code...
Malicious code in elf-stats-gingersnap-reindeer-987 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cf3bd13952debf2913d3cda7026de4722754e97a2ad38af412cd86522ab9313 The package elf-stats-gingersnap-reindeer-987 was found to contain malicious code. Source: ghsa-malware...
MAL-2025-191519 Malicious code in mongodb-stitch-server-testutils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6d66acdf1a1a865257cb91b34cf535addabd337679e38741e5f0c1f89aa0b9b The package mongodb-stitch-server-testutils was found to contain malicious code...
MAL-2025-191090 Malicious code in fat-fingered (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b5e127ac8099a8bee6fc42a5c3911a275384f00af4cd97082dde08a2bf2704f The package fat-fingered was found to contain malicious code. Source: ghsa-malware 77d5770972318f63a00eb2722c056f2e554e8970abd97f94cba9a3dde292a8d8 A...
Liferay Portal JSON Web Services Detected
This is an informational plugin to inform the user that the scanner has detected that the target Liferay instance publicly exposes the JSON web services. No source data...
Malicious code in node-calculator-215d (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3198d6c12dadf6d9c769d208f18cd0ad966ccffa92b0db40b2cb25f0fb9335a The package node-calculator-215d was found to contain malicious code...
MAL-2025-190546 Malicious code in node-calculator-feea (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcb1a64b7f2fc6b55b2801e47c270a7f2ec6e8f80ba3c0689b044d9621131031 The package node-calculator-feea was found to contain malicious code...
EUVD-2025-112169
Malicious code in jovian-cypress-jest-janus npm...