Malicious Package

Overview expressupdate is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

EUVD-2025-113717

Malicious code in express-update-bellatrix-sqlite npm...

Malicious code in express-update-bellatrix-sqlite (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79b87c6eed1a187b8927f3cf388f2dcd18a6422b02b1c38bce55c20256d49f4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Security Bulletin: IBM Security SiteProtector System is affected by multiple Apache HTTP Server Vulnerabilities

Summary Apache HTTP Server provides HTTP services for SiteProtector. IBM Security SiteProtector System has addressed the following vulnerabilities in an express update CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-26377, CVE-2022-31813 and CVE-2022-30556 : Vulnerability Details...

Security Bulletin: IBM Security SiteProtector System is affected by multiple vulnerabilities

Summary IBM Security SiteProtector System has addressed the following vulnerabilities in a Core XPU. Vulnerability Details CVEID: CVE-2020-4150 DESCRIPTION: IBM SiteProtector Appliance contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound...

Security Bulletin: IBM Security SiteProtector System is affected by Apache HTTP Server vulnerability CVE-2021-39275

Summary IBM Security SiteProtector System has addressed the following vulnerability in Core XPU: Vulnerability Details CVEID: CVE-2021-39275 DESCRIPTION: Apache HTTP Server is vulnerable to a buffer overflow, caused by improper bounds checking by the apescapequotes function. By sending specially...

Security Bulletin: A vulnerability in IHS (IBM HTTP Server) affects IBM Security SiteProtector System (CVE-2015-1829)

Summary The IBM Security SiteProtector System uses IBM HTTP Server IHS for which there is a potential denial of service vulnerability that may impact IHS on Windows. Exploitation of the attack requires local access to the server system. Vulnerability Details CVEID: CVE-2015-1829 DESCRIPTION: Apac...

Security Bulletin: Multiple vulnerabilities affect IBM Security SiteProtector Appliance (CVE-2013-2566, CVE-2014-6321, CVE-2015-0162)

Summary There are multiple vulnerabilities identified in IBM Security SiteProtector Appliance. Vulnerability Details CVEID: CVE-2013-2566 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information, caused by the...

Microsoft Internet Explorer 5.0.1 - ITS Protocol Zone Bypass (MS04-013)

source: https://www.securityfocus.com/bid/9658/info Microsoft Internet Explorer has been reported prone to a vulnerability that may permit hostile content to be interpreted in the Local Zone. The issue may be exploited via the ITS InfoTech Storage Protocol URI handler. It is possible to use this...

Security Update for Outlook Express 5.5 for Windows 2000 (KB973354)

A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...

Security Update for Outlook Express for Windows XP x64 Edition (KB951066)

Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Outlook Express or Windows Mail and read data from another Internet Explorer domain or the local computer. You can help protect your system by installing this update from Microsoft...

Security Update for Outlook Express 6 Service Pack 1 (KB941202)

A security issue has been identified in Outlook Express that could allow an attacker to compromise your Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer...

Cumulative Security Update for Outlook Express 5.5 SP2 (KB823353)

A vulnerability exists in Outlook Express that could allow an attacker to cause Outlook Express to fail. You can help protect your computer by installing this update. After you install this update you may need to restart your computer...