Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/11/13 3:23 a.m.1 views

EUVD-2025-179307

Malicious code in development-dependencies-cybernetics-cryptography npm...

6.6AI score
Exploits0
OSV
OSVadded 2025/11/13 3:23 a.m.1 views

MAL-2025-186575 Malicious code in development-dependencies-cybernetics-cryptography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 394b529057f391623b292a4b60d7a51f780d22380dc2cdc5a4c2595970c8ba9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-7799

Malicious code in bioql PyPI...

8.8CVSS8.1AI score0.21763EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-27607

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Python JSON Logger is a JSON Formatter for Python Logging. Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to RCE through a missing...

8.8CVSS7.2AI score0.21763EPSS
Exploits1References2
Snyk
Snykadded 2025/03/07 4:42 p.m.1 views

Unsafe Dependency Resolution

Overview python-json-logger is a JSON Log Formatter for the Python Logging Package Affected versions of this package are vulnerable to Unsafe Dependency Resolution through the deletion of a critical dependency which could be maliciously claimed by a third party. An attacker can execute arbitrary...

8.8CVSS8.5AI score0.21763EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/03/07 4:18 p.m.18 views

CVE-2025-27607 Python JSON Logger has a Potential RCE via missing `msgspec-python313-pre` dependency

Python JSON Logger is a JSON Formatter for Python Logging. Between 30 December 2024 and 4 March 2025 Python JSON Logger was vulnerable to RCE through a missing dependency. This occurred because msgspec-python313-pre was deleted by the owner leaving the name open to being claimed by a third party...

8.8CVSS0.21763EPSS
Exploits1References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/12/01 3:40 a.m.2 views

Malicious code in npm_package_devdependencies__types_jest (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5f8a28159fb1b2ef33b43e4aa71b0c85879d6220009091751cfa1590a1900329 The OpenSSF Package Analysis project identified 'npmpackagedevdependenciestypesjest' @ 30.5.0 npm as malicious. It is considered malicious...

6.9AI score
Exploits0
OSV
OSVadded 2017/03/16 2:59 p.m.0 views

UBUNTU-CVE-2017-6381

A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default .htaccess protection against PHP execution, and the fact that Composer development dependencies aren't normal installed. You might be vulnerabl...

8.1CVSS7.5AI score0.03314EPSS
Exploits0References3
Rows per page
Query Builder