130 matches found
RUSTSEC-2026-0022 Panic when dropping a `[Typed]Func::call_async` future
This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-xjhv-v822-pf94 For more information see the GitHub-hosted security advisory...
CVE-2026-2041 Nagios Host zabbixagent_configwizard_func Command Injection Remote Code Execution Vulnerability
Nagios Host zabbixagentconfigwizardfunc Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Nagios Host. Authentication is required to exploit this vulnerability. The specific flaw exists within t...
CLSA-2026-1771011128 freerdp: Fix of 2 CVEs
CVE-2026-22857: fix heap use-after-free in irpthreadfunc when serialprocessirp fails - CVE-2026-23530: fix heap buffer overflow in planar bitmap decompression due to missing nSrcWidth/nSrcHeight validation...
CVE-2026-22857
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-free occurs in irpthreadfunc because the IRP is freed by irp-Complete and then accessed again on the error path. This vulnerability is fixed in 3.20.1...
Astra Linux – Vulnerability in libxslt
A flaw was discovered in the exsltFuncResultComp function of libxslt, which handles EXSLT elements during stylesheet parsing. Due to improper type handling, the function may treat an XML document node as a regular XML element node, leading to a type confusion. This can result in unexpected memory...
CVE-2017-18612
The wp-whois-domain plugin 1.0.0 for WordPress has XSS via the pages/func-whois.php domain parameter...
EUVD-2025-36395
Malicious code in func-analysist npm...
Malicious Package
Overview func-analysist is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in func-analysist (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80289c38bf711f5ac60787399d199be29ca23f0695b947ee46825c9a3ce226bf The package func-analysist was found to contain malicious code. Source: ghsa-malware bb257e8ae472109cbe751b79ea838ddb8a0272301fac276ca6ade81aaa72b7d9...
Malicious Package
Overview func-analys is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...
Malicious Package
Overview func-logger is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...
CVE-2025-11731
CVE-2025-11731 affects libxslt and is triggered by a flaw in exsltFuncResultComp() when handling EXSLT func:result during stylesheet parsing. The issue is a type confusion that may cause memory reads, potentially crashing the application and causing a denial of service. Publicly documented impact...
MAL-2025-48028 Malicious code in func-analyst (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware acdf906e62052075f99f8b6d12353e90718603e428f036750156e9a47c16b61c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
EUVD-2025-32965
Malicious code in func-analyst npm...
Malicious code in func-analyst (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware acdf906e62052075f99f8b6d12353e90718603e428f036750156e9a47c16b61c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
EUVD-2011-4466
Malware in sbrugna...
EUVD-2005-1624
Malware in sbrugna...
EUVD-2019-16960
Malware in sbrugna...
EUVD-2022-54998
Malicious code in bioql PyPI...
PT-2025-44110
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a race condition in kprobe initialization that can lead to a NULL pointer dereference and kernel crash. This occurs between kprobe activation and perf events...