15091 matches found
Trend Micro Apex One OS Command Injection Vulnerability
Trend Micro Apex One Management Console on-premise contains an OS command injection vulnerability that could allow a pre-authenticated remote attacker to upload malicious code and execute commands on affected installations...
Malicious code in log4net (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a2c71f77b101535649693701491e46504cc3c34a5d35b7fa696e435f25916f2a The OpenSSF Package Analysis project identified 'log4net' @ 4.0.1 npm as malicious. It is considered malicious because: - The package communicat...
CVE-2025-24975 Firebird Non-Authorized Access to Encrypted Database Using Execute Statement on External
Firebird is a relational database. Prior to snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609, Firebird is vulnerable if ExtConnPoolSize is not set equal to 0. If connections stored in ExtConnPool are not verified for presence and suitability of the CryptCallback interface is used when...
CVE-2025-24975 Firebird Non-Authorized Access to Encrypted Database Using Execute Statement on External
Firebird is a relational database. Prior to snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609, Firebird is vulnerable if ExtConnPoolSize is not set equal to 0. If connections stored in ExtConnPool are not verified for presence and suitability of the CryptCallback interface is used when...
CVE-2025-5047 DGN File Parsing Uninitialized Variable Vulnerability
A maliciously crafted DGN file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2025-54474
A SQLi vulnerability in DJ-Classifieds component 3.9.2-3.10.1 for Joomla was discovered. The issue allows privileged users to execute arbitrary SQL commands...
PT-2025-33460 · WordPress · Bizcalendar Web
Name of the Vulnerable Software and Affected Versions: BizCalendar Web plugin for WordPress versions prior to 1.1.0.51 Description: The BizCalendar Web plugin for WordPress is vulnerable to Local File Inclusion via the bizcalv shortcode. Authenticated attackers with Contributor-level access and...
Malicious code in load-validate-function-star-execute (npm)
The package load-validate-function-star-execute was found to contain malicious code...
MAL-2025-15958 Malicious code in book-user-process-protected-execute (npm)
The package book-user-process-protected-execute was found to contain malicious code...
MAL-2025-38051 Malicious code in validate-function-parse-execute-interface (npm)
The package validate-function-parse-execute-interface was found to contain malicious code...
MAL-2025-33443 Malicious code in small-psi-unix-execute-report (npm)
The package small-psi-unix-execute-report was found to contain malicious code...
MAL-2025-19638 Malicious code in emulate-slow-execute-try-small (npm)
The package emulate-slow-execute-try-small was found to contain malicious code...
MAL-2025-18296 Malicious code in deploy-validate-execute-moon-protected (npm)
The package deploy-validate-execute-moon-protected was found to contain malicious code...
Malicious code in serialize-module-wind-cache-execute (npm)
The package serialize-module-wind-cache-execute was found to contain malicious code...
MAL-2025-25473 Malicious code in load-validate-function-star-execute (npm)
The package load-validate-function-star-execute was found to contain malicious code...
MAL-2025-23262 Malicious code in integer-bad-socket-execute-emulate (npm)
The package integer-bad-socket-execute-emulate was found to contain malicious code...
Malicious code in reject-book-execute-bash-code (npm)
The package reject-book-execute-bash-code was found to contain malicious code...
MAL-2025-32991 Malicious code in serialize-module-wind-cache-execute (npm)
The package serialize-module-wind-cache-execute was found to contain malicious code...
MAL-2025-33928 Malicious code in star-execute-float-try-earth (npm)
The package star-execute-float-try-earth was found to contain malicious code...
Malicious code in scale-execute-error-balance-try (npm)
The package scale-execute-error-balance-try was found to contain malicious code...