Malicious code in saifulhhacker.site-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 799872f05cf82512e4778c79a96861577979b541fd1ef8d98740eb4a7a8e0c16 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

EUVD-2021-32035

Malicious code in bioql PyPI...

MAL-2025-41318 Malicious code in rehype-headerless-table-plugin (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5f663df30b939e46c2ebd664fc1dae15c177895427b67b8b2b3d646b000bc64f The OpenSSF Package Analysis project identified...

OESA-2025-2060 python-werkzeug security update

A comprehensive WSGI web application library Security Fixes: Werkzeug is a comprehensive WSGI web application library. The debugger in affected versions of Werkzeug can allow an attacker to execute code on a developer's machine under some circumstances. This requires the attacker to get the...

MAL-2024-11754 Malicious code in web-live-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e96245195cd1049cb66ab19ce9438f1ac6e5d2e00b7afa701c04b8aba2c3f355 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Senayan Library Management System v9.0.0 - SQL Injection

Exploit Title: Senayan Library Management System v9.0.0 - SQL Injection Author: nu11secur1ty Date: 11.09.2022 Vendor: https://slims.web.id/web/ Software: https://github.com/slims/slims9bulian/releases/download/v9.0.0/slims9bulian-9.0.0.zip Reference:...

Purchase Order Management 1.0 SQL Injection

Title: Purchase Order Management-1.0 - SQLi Author: nu11secur1ty Date: 03.06.2023 Vendor: https://www.sourcecodester.com/user/257130/activity Software: https://www.sourcecodester.com/php/14935/purchase-order-management-system-using-php-free-source-code.html Reference:...

SUSE CVE-2022-42322

Xenstore: Cooperating guests can create arbitrary numbers of nodes This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by...

Simple Mobile Comparison Website 1.0 SQL Injection

Title: Simple Mobile Comparison Website v1.0 - SQLi Author: nu11secur1ty Date: 02.23.2022 Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15186/simple-mobile-comparison-website-phpoop-free-source-code.html Reference:...

Simple Mobile Comparison Website v1.0 - SQL injection Vulnerability

Title: Simple Mobile Comparison Website v1.0 - SQLi Author: nu11secur1ty Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15186/simple-mobile-comparison-website-phpoop-free-source-code.html Reference:...

Mail.ru: OS command injection on seedr.ru

site: https://seedr.ru The seedid parameter be vulnerable to OS command injection attacks. It is possible to use various shell metacharacters to inject arbitrary OS commands. The command output does not appear to be returned in the application's responses, however it is possible to inject time...