MAL-2025-49055 Malicious code in ts-migrate-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 13c089f283eddbfd2554393c29fc93368e75a6329803352ed0175155f436915f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in json-schema-to-typescript-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 148a68690ce752d3b4d67269d4cdd05066913f5abbc344c7f7bf9ac550af794b The package json-schema-to-typescript-example was found to contain malicious code. Source: ossf-package-analysis...

MAL-2025-49246 Malicious code in json-schema-to-typescript-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 148a68690ce752d3b4d67269d4cdd05066913f5abbc344c7f7bf9ac550af794b The package json-schema-to-typescript-example was found to contain malicious code. Source: ossf-package-analysis...

PT-2025-44367

Name of the Vulnerable Software and Affected Versions Apache Airflow versions prior to 3.0.5 Description A parameter in the example dag decorator dag was not properly validated, potentially allowing a user of the Airflow UI to redirect the example to a malicious server and execute code on a worke...

MAL-2025-48841 Malicious code in example-ssr (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in example-ssr (npm)

--- -= Per source details. Do not edit below this line.=-...

GHSA-H5FG-JPGR-RV9C Vert.x-Web Access Control Flaw in StaticHandler’s Hidden File Protection for Files Under Hidden Directories

Description There is a flaw in the hidden file protection feature of Vert.x Web’s StaticHandler when setIncludeHiddenfalse is configured. In the current implementation, only files whose final path segment i.e., the file name begins with a dot . are treated as “hidden” and are blocked from being...

CVE-2022-50568

CVE-2022-50568 affects the Linux kernel USB gadget code for f_hidg. The embedded struct cdev’s lifetime was not tied to the enclosing f_hidg, creating a use-after-free if /dev/hidgN is kept open while the gadget is deleted. The fix is to pull the existing device into struct f_hidg and use the cde...

EUVD-2009-0997

Malware in sbrugna...

EUVD-2019-2036

Malware in sbrugna...

EUVD-2020-13447

Malware in sbrugna...

EUVD-2009-0878

Malware in sbrugna...

EUVD-2019-7783

Malware in sbrugna...

EUVD-2019-15705

Malware in sbrugna...

[SECURITY] Fedora 42 Update: mupdf-1.26.3-4.fc42

MuPDF is a lightweight PDF viewer and toolkit written in portable C. The renderer in MuPDF is tailored for high quality anti-aliased graphics. MuPDF renders text with metrics and spacing accurate to within fractions of a pixel for the highest fidelity in reproducing the look of a printed page on...

EUVD-2025-3440

Malicious code in bioql PyPI...

EUVD-2022-41071

Malicious code in bioql PyPI...

EUVD-2024-3233

Malicious code in bioql PyPI...

RLSA-2025:7497 Moderate: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Apache Tomcat: Authentication bypass when using Jakarta Authentication API CVE-2024-52316 tomcat: Apache Tomcat: DoS in examples web application CVE-2024-54677 tomcat: Potentia...

Malicious code in react-datasheet-example (npm)

--- -= Per source details. Do not edit below this line.=-...