104 matches found
EUVD-2025-54442
Malicious code in exuberant-lavender-gopher npm...
Malicious code in exuberant-copper-aphid (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a3cad0185202c5e1156d4701cf8b72f81c027939670eb9285cd628e0613936c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in exuberant_iguana_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f1ce528480214f56342cfbd19f9a51fdba6d4ec4341a6d363251ac870ea00e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-50227
Malicious code in exuberantspiderz3n npm...
Malicious code in exuberant_spider_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e01486ad7ef747c86539a50d2a6ecdc152260f792640a47d0260290092e76de7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-56180 Malicious code in exuberant_otter_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68b4bfeb35af4f73e55a47f89a6af2e319e4b73616e20d1cea9eb4d3e9f9fa20 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in exuberant_camel_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d75c8bcfb21c21e98433f63e0c6436c8a967feb23b3cb70ef46bbedd13c060f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-47796
Malicious code in exuberantcamelz3n npm...
EUVD-2001-0427
Malware in sbrugna...
EUVD-2014-7078
Malware in sbrugna...
Amazon Linux AMI : ctags (ALAS-2025-1974)
The version of ctags installed on the remote host is prior to 5.8-2.7. It is, therefore, affected by a vulnerability as referenced in the ALAS-2025-1974 advisory. A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filename. A crafted tag filenam...
Medium: ctags
Issue Overview: A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags in sort.c calls...
Amazon Linux 2 : ctags (ALAS-2023-2343)
The version of ctags installed on the remote host is prior to 5.8-23. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2343 advisory. A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filename. A crafted tag filenam...
The vulnerability of the externalSortTags function in the sort.c utility for creating file indexes for the Exuberant Ctags program allows a hacker to execute arbitrary commands.
The vulnerability of the externalSortTags function in the Exuberant Ctags file indexing utility exists because measures to neutralize special elements used in operating system commands are not taken. Exploiting this vulnerability allows an attacker to execute arbitrary commands...
Oracle Linux 8 : ctags (ELSA-2023-2863)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-2863 advisory. 5.8-23 - CVE-2022-4515, arbitrary code execution issue Resolves: rhbz2153787 Tenable has extracted the preceding description block directly from the Oracle Linu...
AlmaLinux 8 : ctags (ALSA-2023:2863)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:2863 advisory. - A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filename. A crafted tag filename specified in the command...
ctags: arbitrary command execution via a tag file with a crafted filename
A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags in sort.c calls the system3...
CentOS 8 : ctags (CESA-2023:2863)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:2863 advisory. - A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filename. A crafted tag filename specified in the comma...
Mageia: Security Advisory (MGASA-2023-0003)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CBL Mariner 2.0 Security Update: ctags (CVE-2022-4515)
The version of ctags installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-4515 advisory. - A flaw was found in Exuberant Ctags in the way it handles the -o option. This option specifies the tag filenam...