113 matches found
MAL-2025-175926 Malicious code in mahiya-sutnu-gi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67447655d762b9554840e382f18d68467052a114e6f8968d7686eff27f568208 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mahiya-sutu-gi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a4772da62829322224ecc4994012ae83f2e76c5d163435a41c0cf1312cc88e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-140335
Malicious code in mahiya-sutu-gi npm...
MAL-2025-177961 Malicious code in polymer-gi-agagfaf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39f2782228bb71f5d4189adc913d741bc8bc9b1b71e1a690a3fd446de65b49b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-140340
Malicious code in mahiy-sutu-gi npm...
EUVD-2025-140344
Malicious code in mahiy-sutabu-gi npm...
MAL-2025-177959 Malicious code in polymer-gi-agaf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e945b933428acafb2f9e506d23e9e0360e32414f1713c79601a8b2b211ef532e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-138169
Malicious code in polymer-gi-agka npm...
EUVD-2025-138175
Malicious code in polymer-gi-agagfaf npm...
Fedora: Security Advisory (FEDORA-2025-86cf4f2eed)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2023 : (ALAS2023-2025-1247)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1247 advisory. gi-docgen does not encode search terms before inserting them into HTML, allowing XSS via a crafted URL. Description obtained from: https://gitlab.gnome.org/GNOME/gi-docgen/-/issues/228 CVE-2025-11687...
Important: gi-docgen
Issue Overview: gi-docgen does not encode search terms before inserting them into HTML, allowing XSS via a crafted URL. Description obtained from: https://gitlab.gnome.org/GNOME/gi-docgen/-/issues/228 CVE-2025-11687 Affected Packages: gi-docgen Issue Correction: Run dnf update gi-docgen...
Linux Distros Unpatched Vulnerability : CVE-2025-11687
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the gi-docgen. This vulnerability allows arbitrary JavaScript execution in the context of the page enabling DOM access, session cookie theft...
Fedora 43 : gi-docgen (2025-86cf4f2eed)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-86cf4f2eed advisory. gi-docgen 2025.5 - 2025-10-11 This is a security fix for CVE-2025-11687. The severity of this issue depends on what else is hosted on the same domain as the...
GI-DocGen Cross-Site Scripting Vulnerability
GI-DocGen is an open source document generation library for GNOME. GI-DocGen suffers from a cross-site scripting vulnerability that stems from susceptibility to cross-site scripting attacks that could lead to the execution of JavaScript code in a web environment...
Fedora: Security Advisory (FEDORA-2025-b4184a589e)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-52dc5ac7d9)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 41 : gi-docgen (2025-52dc5ac7d9)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-52dc5ac7d9 advisory. gi-docgen 2025.5 - 2025-10-11 This is a security fix for CVE-2025-11687. The severity of this issue depends on what else is hosted on the same domain as the...
Fedora 42 : gi-docgen (2025-b4184a589e)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-b4184a589e advisory. gi-docgen 2025.5 - 2025-10-11 This is a security fix for CVE-2025-11687. The severity of this issue depends on what else is hosted on the same domain as the...
python3-gi-docgen-2025.5-1.1 on GA media (moderate)
python3-gi-docgen-2025.5-1.1 on GA media Announcement ID: openSUSE-SU-2025:15634-1 Rating: moderate Cross-References: CVE-2025-11687 CVSS scores: CVE-2025-11687 SUSE : 5.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L CVE-2025-11687 SUSE : 2.1...