MAL-2026-4373 Malicious code in @budetzz/libsignal-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2dbcccc761971dfc5f844f59f362fe32ee1e0b9a3cd91ddd4fc87be5c8b013a The package is published under the name @budetzz/libsignal-node, impersonating the well-known libsignal Signal-protocol library, but the homepage and...

CVE-2026-0927

creationtimestamp| type| source ---|---|--- 2026-01-23 07:23:16+00:00| seen| https://gist.github.com/Darkcrai86/30221df75e8d29c4c44a72efd5f3ce5b 2026-01-23 07:44:49+00:00| seen| https://gist.github.com/Darkcrai86/f6ceca6b6f5861138955c1b1e47ded28 2026-01-23 07:59:20+00:00| seen|...

GHSA-6V67-2WR5-GVF4

creationtimestamp| type| source ---|---|--- 2025-07-16 03:20:51+00:00| seen| https://gist.github.com/safer-bot/4a0c1681f4dce611ef9b2d8ad2491ce6 2025-07-16 03:41:01+00:00| seen| https://gist.github.com/safer-bot/1311a1d6fbeee3ebfc44b603cc3c1e8e 2025-07-16 03:46:52+00:00| seen|...

GHSA-65FG-84F6-3JQ3

creationtimestamp| type| source ---|---|--- 2025-07-16 03:14:06+00:00| seen| https://gist.github.com/safer-bot/f2a796b1c3ade94b037bb1ddfcabe9b1 2025-07-16 03:36:23+00:00| seen| https://gist.github.com/safer-bot/72f995b8cd1384d5441af0330c518fe4 2025-07-16 03:56:27+00:00| seen|...

CVE-2025-46824 Discourse Code Review Plugin vulnerable to XSS via auto link commits

The Discourse Code Review Plugin allows users to review GitHub commits on Discourse. Prior to commit eed3a80, an attacker can execute arbitrary JavaScript on users' browsers by posting links to malicious GitHub commits. This problem is patched in commit eed3a80 of the discourse-code-review plugin...

GHSA-JXQQ-CQM6-PFQ9

creationtimestamp| type| source ---|---|--- 2025-04-03 02:06:20+00:00| seen| https://gist.github.com/shmil111/0a44cfb066f7a8de2e03f671c12f585f 2025-04-03 05:09:00+00:00| seen| https://gist.github.com/shmil111/fb79705b111af53d22c7d3bdcbd34051...

CVE-2024-55956

creationtimestamp| type| source ---|---|--- 2024-12-13 21:21:03+00:00| seen| https://infosec.exchange/users/catc0n/statuses/113647607008214402 2024-12-13 23:18:15+00:00| seen| https://t.me/cvedetector/12902 2024-12-15 10:09:25+00:00| seen|...

The owner is a single point of failure and a centralization risk

Lines of code 56, 109, 127, 172, 219, 250, 115, 131, 154, 116, 131https://github.com/Tapioca-DAO/tapiocaz-audit/blob/bcf61f79464cfdc0484aa272f9f6e28d...

Rounding Bug in OracleLibrary.consult Impacting Pricing Accuracy and User Costs

Lines of code Vulnerability details Impact The rounding bug in the OracleLibrary.consult function has a significant impact on applications that rely on this function for price calculations, especially those involving asset swaps, collateral valuation, or other financial transactions. The bug caus...

LACK OF INPUT VALIDATION ON THE _recipient ADDRESS IN THE RootBridgeAgent.retrySettlement FUNCTION CAN LEAD TO LOSS OF FUNDS TO THE USER

Lines of code Vulnerability details Impact The RootBridgeAgent.retrySettlement function is used to retry the settlement of tokens by the settlement owner. The retrySettlement function is an external payable function which does not have access control, hence can be called by any settlement owner b...

yryryserywretsh

Lines of code L1 Vulnerability details Impact Detailed description of the impact of this finding. Proof of Concept Provide direct links to all referenced code in GitHub. Add screenshots, logs, or any other relevant proof that illustrates the concept. Tools Used Recommended Mitigation Steps Assess...

rwar

Lines of code L1 Vulnerability details Impact Detailed description of the impact of this finding. Proof of Concept Provide direct links to all referenced code in GitHub. Add screenshots, logs, or any other relevant proof that illustrates the concept. Tools Used Recommended Mitigation Steps Assess...

CVE-2019-1040

creationtimestamp| type| source ---|---|--- 2019-06-14 09:16:51+00:00| published-proof-of-concept| https://t.me/canyoupwnme/5627 2019-06-14 12:15:26+00:00| published-proof-of-concept| https://t.me/antichat/5409 2019-06-15 11:10:30+00:00| published-proof-of-concept| https://t.me/misteam/97...

IKARUS anti.virus Multiple Denial of Service/BSOD Vulnerabilities

IKARUS anti.virus is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...