Lucene search
K

113 matches found

OSV
OSV
added 2025/11/12 7:18 p.m.1 views

MAL-2025-175926 Malicious code in mahiya-sutnu-gi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67447655d762b9554840e382f18d68467052a114e6f8968d7686eff27f568208 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 7:18 p.m.3 views

Malicious code in mahiya-sutu-gi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a4772da62829322224ecc4994012ae83f2e76c5d163435a41c0cf1312cc88e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/12 7:18 p.m.1 views

EUVD-2025-140335

Malicious code in mahiya-sutu-gi npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/12 7:18 p.m.1 views

MAL-2025-177961 Malicious code in polymer-gi-agagfaf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39f2782228bb71f5d4189adc913d741bc8bc9b1b71e1a690a3fd446de65b49b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/11/12 7:18 p.m.1 views

EUVD-2025-140340

Malicious code in mahiy-sutu-gi npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 7:18 p.m.1 views

EUVD-2025-140344

Malicious code in mahiy-sutabu-gi npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/12 7:18 p.m.3 views

MAL-2025-177959 Malicious code in polymer-gi-agaf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e945b933428acafb2f9e506d23e9e0360e32414f1713c79601a8b2b211ef532e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/11/12 7:18 p.m.1 views

EUVD-2025-138169

Malicious code in polymer-gi-agka npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 7:18 p.m.3 views

EUVD-2025-138175

Malicious code in polymer-gi-agagfaf npm...

6.6AI score
Exploits0
OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-86cf4f2eed)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.9AI score0.00337EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.7 views

Amazon Linux 2023 : (ALAS2023-2025-1247)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1247 advisory. gi-docgen does not encode search terms before inserting them into HTML, allowing XSS via a crafted URL. Description obtained from: https://gitlab.gnome.org/GNOME/gi-docgen/-/issues/228 CVE-2025-11687...

6.1CVSS5.3AI score0.00337EPSS
Exploits0References4
Amazon
Amazon
added 2025/10/27 12:0 a.m.6 views

Important: gi-docgen

Issue Overview: gi-docgen does not encode search terms before inserting them into HTML, allowing XSS via a crafted URL. Description obtained from: https://gitlab.gnome.org/GNOME/gi-docgen/-/issues/228 CVE-2025-11687 Affected Packages: gi-docgen Issue Correction: Run dnf update gi-docgen...

6.1CVSS6.1AI score0.00337EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-11687

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the gi-docgen. This vulnerability allows arbitrary JavaScript execution in the context of the page enabling DOM access, session cookie theft...

6.1CVSS6AI score0.00337EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/25 12:0 a.m.6 views

Fedora 43 : gi-docgen (2025-86cf4f2eed)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-86cf4f2eed advisory. gi-docgen 2025.5 - 2025-10-11 This is a security fix for CVE-2025-11687. The severity of this issue depends on what else is hosted on the same domain as the...

6.1CVSS5.5AI score0.00337EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/21 12:0 a.m.13 views

GI-DocGen Cross-Site Scripting Vulnerability

GI-DocGen is an open source document generation library for GNOME. GI-DocGen suffers from a cross-site scripting vulnerability that stems from susceptibility to cross-site scripting attacks that could lead to the execution of JavaScript code in a web environment...

6.1CVSS5.8AI score0.00337EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/10/21 12:0 a.m.6 views

Fedora: Security Advisory (FEDORA-2025-b4184a589e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.9AI score0.00337EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/10/21 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-52dc5ac7d9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.9AI score0.00337EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.4 views

Fedora 41 : gi-docgen (2025-52dc5ac7d9)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-52dc5ac7d9 advisory. gi-docgen 2025.5 - 2025-10-11 This is a security fix for CVE-2025-11687. The severity of this issue depends on what else is hosted on the same domain as the...

6.1CVSS5.5AI score0.00337EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.11 views

Fedora 42 : gi-docgen (2025-b4184a589e)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-b4184a589e advisory. gi-docgen 2025.5 - 2025-10-11 This is a security fix for CVE-2025-11687. The severity of this issue depends on what else is hosted on the same domain as the...

6.1CVSS5.5AI score0.00337EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2025/10/15 12:0 a.m.6 views

python3-gi-docgen-2025.5-1.1 on GA media (moderate)

python3-gi-docgen-2025.5-1.1 on GA media Announcement ID: openSUSE-SU-2025:15634-1 Rating: moderate Cross-References: CVE-2025-11687 CVSS scores: CVE-2025-11687 SUSE : 5.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L CVE-2025-11687 SUSE : 2.1...

5.8CVSS7.2AI score0.00337EPSS
Exploits0
Rows per page
Query Builder