CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2025/12/04 12:0 a.m.•4 views

CVE-2025-54303

The Thermo Fisher Torrent Suite Django application 5.18.1 has weak default credentials, which are stored as fixtures for the Django ORM API. The ionadmin user account can be used to authenticate to default deployments with the password ionadmin. The user guide recommends changing default...

6.5AI score0.00325EPSS

Exploits0References3

OSSF Malicious Packages•added 2025/10/23 7:31 p.m.•4 views

Malicious code in eithernet-test-fixtures-test (npm)

--- -= Per source details. Do not edit below this line.=-...

OSV•added 2025/10/23 7:31 p.m.•2 views

MAL-2025-48838 Malicious code in eithernet-test-fixtures-test (npm)

--- -= Per source details. Do not edit below this line.=-...

OSV•added 2025/10/23 7:31 p.m.•2 views

MAL-2025-48837 Malicious code in eithernet-test-fixtures (npm)

--- -= Per source details. Do not edit below this line.=-...

OSSF Malicious Packages•added 2025/10/23 7:31 p.m.•4 views

Malicious code in eithernet-test-fixtures (npm)

--- -= Per source details. Do not edit below this line.=-...

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•2 views

Malicious code in imaf-fixtures (npm)

The package imaf-fixtures was found to contain malicious code...

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-23061 Malicious code in imaf-fixtures (npm)

The package imaf-fixtures was found to contain malicious code...

7.2AI score

OSSF Malicious Packages•added 2025/07/03 3:14 p.m.•4 views

Malicious code in react-fixtures-ssr (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d710afc7119dec419c22aa6e052c351680e8510317df2c1ea02c3ab56eec3bf4 Any computer that has this package installed or running should be considered...

6.8AI score

OSSF Malicious Packages•added 2023/09/27 3:10 a.m.•3 views

Malicious code in react-fixtures (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 313318cff861c45bde316c24fa07d680f6c59e74a77ae6e65c31fe66f54e2f9d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSV•added 2023/09/27 3:10 a.m.•9 views

MAL-2023-8259 Malicious code in react-fixtures (npm)

7.2AI score

vulnersOsv•added 2023/09/08 12:19 p.m.•4 views

ch.admin.bit.jeap:jeap-spring-boot-security-starter-it (>=17.16.0 <=17.24.1), ch.mobi.mobitor:mobitor-plugins-test (>=3.1.171 <=3.1.483) +50 more potentially affected by CVE-2023-41329 via com.github.tomakehurst:wiremock-jre8-standalone (>=2.23.2 <=2.35.0)

com.github.tomakehurst:wiremock-jre8-standalone MAVEN version =2.23.2, =17.16.0, =3.1.171, =1.0.7, =1.13.3, =1.0.0, =2.4.4, =6.7.7, =8.1.0, =6.7.7, =9.0.1, =8.5.0, =9.1.18 - de.muenchen.oss.digiwf:digiwf-coverage =1.3.0 and more Source cves: CVE-2023-41329 Source advisory: OSV:GHSA-PMXQ-PJ47-J8J4...

6.6CVSS6.6AI score0.00571EPSS

OSSF Malicious Packages•added 2022/06/20 8:15 p.m.•2 views

Malicious code in @crackle-fixtures/multi-entry-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b947e49cb6f0a8e988511d9e9b78b3cb92a5b74b3867030a23c0634171151762 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

OSV•added 2022/06/20 8:15 p.m.•5 views

MAL-2022-186 Malicious code in @crackle-fixtures/multi-entry-library (npm)

OSV•added 2019/01/04 5:44 p.m.•24 views

GHSA-2X54-J4M3-R6WX sqla-yaml-fixtures is vulnerable to Code Injection

Sqlayamlfixtures versions up to 0.9.1 allows local users to execute arbitrary python code via the fixturetext argument in sqlayamlfixtures.load...

8.7CVSS7.7AI score0.00397EPSS

Exploits1References5

PyPA•added 2019/01/03 7:29 p.m.•6 views

PYSEC-2019-122

Sqlayamlfixtures 0.9.1 allows local users to execute arbitrary python code via the fixturetext argument in sqlayamlfixtures.load...

7.8CVSS7.5AI score0.00397EPSS

Exploits1References2Affected Software1

Openbugbounty•added 2018/05/21 5:28 p.m.•8 views

decow.com XSS vulnerability

Open Bug Bounty ID: OBB-619648 Description| Value ---|--- Affected Website:| decow.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...