155 matches found
NeuroLog: Reasoning You Can Audit -- Neuro-Symbolic Vulnerability Discovery Via LLM Facts, Datalog, and SMT
Vulnerability discovery on C/C++ source asks the analyst to choose between heavyweight static analysers, which need a working build before a single query runs, and free-form LLMs, which read source readily but invent details and lose track of cross-function dataflow on real codebases. We present...
Astra Linux - уязвимость в ansible
A flaw was discovered in Ansible Engine. This flaw occurs in all versions of Ansible Engine from 2.7.x, 2.8.x, and 2.9.x, as of 2.7.17, 2.8.9, and 2.9.6, respectively. The issue arises when using ansiblefacts as a subkey of itself and promoting it to a variable when inject is enabled. After the...
Important: Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage
A Subscription Management tool for finding and reporting Red Hat product usage Red Hat Discovery, also known as Discovery, is an inspection and reporting tool that finds, identifies, and reports environment data, or facts, such as the number of physical and virtual systems on a network, their...
Important: Red Hat Security Advisory: Satellite 6.16.8 Async Update
An update is now available for Red Hat Satellite 6.16 for RHEL 8 and RHEL 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
Astra Linux - уязвимость в ansible
A flaw was discovered in Ansible, where a user’s controller is vulnerable to template injection. This issue can occur when facts used in the template do not include special template characters, especially if the user attempts to embed templates within multi-line YAML strings. This flaw allows...
Exploit for CVE-2025-2304
HackTheBox — Facts Machine Writeup !HackTheBoxhttps://img...
Important: Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage
A Subscription Management tool for finding and reporting Red Hat product usage Red Hat Discovery, also known as Discovery, is an inspection and reporting tool that finds, identifies, and reports environment data, or facts, such as the number of physical and virtual systems on a network, their...
MAL-2025-192410 Malicious code in facts-base (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd985aa898a134a3edaeb33d9629378a215a674e8110bb88fbbdfce59c8883e The package facts-base was found to contain malicious code. Source: ghsa-malware 11ed9b0a6622d128df892c963646c0dd03c4a65ddd22b4ac0aebea5d9f4b0adc Any...
Malicious Package
Overview facts-base is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
EUVD-2025-202365
Malicious code in facts-base npm...
Malicious code in facts-base (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd985aa898a134a3edaeb33d9629378a215a674e8110bb88fbbdfce59c8883e The package facts-base was found to contain malicious code. Source: ghsa-malware 11ed9b0a6622d128df892c963646c0dd03c4a65ddd22b4ac0aebea5d9f4b0adc Any...
EUVD-2025-201524
The Canadian Nutrition Facts Label plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'percentage' field in the Nutrition Label custom post type in all versions up to, and including, 3.0 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2025-12715
The Canadian Nutrition Facts Label plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'percentage' field in the Nutrition Label custom post type in all versions up to, and including, 3.0 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2025-12715
CVE-2025-12715 concerns the WordPress plugin Canadian Nutrition Facts Label . It enables a Stored Cross‑Site Scripting (XSS) via the percentage field in the plugin’s Nutrition Label custom post type, affecting all versions up to 3.0. The vulnerability can be exploited by authenticated attackers w...
WordPress plugin Canadian Nutrition Facts Label 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...
PT-2025-49334
The Canadian Nutrition Facts Label plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'percentage' field in the Nutrition Label custom post type in all versions up to, and including, 3.0 due to insufficient input sanitization and output escaping. This makes it possible for...
EUVD-2020-0003
Malware in sbrugna...
EUVD-2014-9382
Malware in sbrugna...
EUVD-2014-6830
Malware in sbrugna...
EUVD-2013-4420
Malware in sbrugna...