Lucene search
K

7 matches found

OSV
OSV
added 2026/04/21 11:15 a.m.14 views

MAL-2026-2965 Malicious code in build-metadata-logger (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 be01b550f3d8914aa6bd8659c9a410054e4e0bf9203d33e93478eb444e957b55 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.9AI score
Exploits0References1
The Hacker News
The Hacker News
added 2023/09/01 10:5 a.m.47 views

Russian State-Backed 'Infamous Chisel' Android Malware Targets Ukrainian Military

Cybersecurity and intelligence agencies from Australia, Canada, New Zealand, the U.K., and the U.S. on Thursday disclosed details of a mobile malware strain targeting Android devices used by the Ukrainian military. The malicious software, dubbed Infamous Chisel and attributed to a Russian...

7.5AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/06/06 12:0 a.m.4 views

Malicious code in lalalaopti (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 92031dd23356e3a0c484288f4488d15166db6251a4872ec009c6222eafce041d Malicious packages campaign targeting developers, payload is hidden using Steganography, exfiltrate host information...

7AI score
Exploits0References1
0day.today
0day.today
added 2022/11/16 12:0 a.m.402 views

BMC Remedy ITSM-Suite 9.1.10 / 20.02 HTML Injection Vulnerability

======================================================================= title: HTML Injection product: BMC Remedy ITSM-Suite vulnerable version: 9.1.10 = 20.02 in new versioning scheme fixed version: 22.1 CVE number: CVE-2022-26088 impact: Low homepage:...

5.4CVSS0.01012EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/11/15 12:0 a.m.281 views

BMC Remedy ITSM-Suite 9.1.10 / 20.02 HTML Injection

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: HTML Injection product: BMC Remedy ITSM-Suite vulnerable version: 9.1.10 = 20.02 in new versioning scheme fixed version: 22.1 CVE number: CVE-2022-26088 impact: Low...

5.6AI score0.01012EPSS
Exploits3
Cvelist
Cvelist
added 2021/11/08 2:28 p.m.32 views

CVE-2021-28022

Blind SQL injection in the login form in ServiceTonic Helpdesk software 9.0.35937 allows attacker to exfiltrate information via specially crafted HQL-compatible time-based SQL queries...

7.9AI score0.01115EPSS
Exploits1References2
OSV
OSV
added 2020/09/03 6:14 p.m.8 views

GHSA-CR67-78JR-J94P Local File Inclusion in domokeeper

All versions of domokeeper are vulnerable to Local File Inclusion. The /plugin/ route passes a GET parameter unsanitized to a require call. It then returns the output of require in the server response. This may allow attackers to load unintended code in the application. It also allows attackers t...

6.9AI score
Exploits0References1
Rows per page
Query Builder