Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29707 matches found

OSV
OSVadded 2025/11/24 11:38 a.m.1 views

MAL-2025-190647 Malicious code in @postman/tunnel-agent (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6961dafcc910bb7a6b1db8cb597068eeb85f973dcd669392354a7b614928dbf5 The package @postman/tunnel-agent was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
OSV
OSVadded 2025/11/24 11:29 a.m.2 views

MAL-2025-190645 Malicious code in @posthog/core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92317c7f15a5eade85fe5c248b9b31870be1b384a5e5455dd3ea546c94c279e4 The package @posthog/core was found to contain malicious code. Source: ghsa-malware 8fce4f3a908b835a108ad8c30d1f2095f67e065911b353c73d0f9151be9ed6bf...

6.8AI score
Exploits0References4
OSV
OSVadded 2025/11/24 11:25 a.m.1 views

MAL-2025-190648 Malicious code in @zapier/zapier-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d39a04949d436340c422fef75a4dab8c20b487218e69e62cdcd198bddbe9ee0e The package @zapier/zapier-sdk was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
OSV
OSVadded 2025/11/24 6:2 a.m.1 views

MAL-2025-190803 Malicious code in @ensdomains/cypress-metamask (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19427e64315a085f7001dff6a896730aa4cce33cf679f6a2da0a8bc61e96fb58 The package @ensdomains/cypress-metamask was found to contain malicious code. Source: ghsa-malware...

7AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/24 3:38 a.m.5 views

Malicious code in @quick-start-soft/quick-markdown-print (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49e82ae5f39d0c568ce2ebb23ff053c97eba1c0bb306b946c3fefc4c0680b526 The package @quick-start-soft/quick-markdown-print was found to contain malicious code. Source: ghsa-malware...

7AI score
Exploits0References4
OSV
OSVadded 2025/11/24 3:38 a.m.3 views

MAL-2025-191306 Malicious code in @quick-start-soft/quick-markdown-print (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49e82ae5f39d0c568ce2ebb23ff053c97eba1c0bb306b946c3fefc4c0680b526 The package @quick-start-soft/quick-markdown-print was found to contain malicious code. Source: ghsa-malware...

7AI score
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/11/21 10:35 p.m.7 views

CVE-2025-64660

Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to execute code over a network...

8CVSS7.4AI score0.00486EPSS
Exploits0References1
Circl
Circladded 2025/11/21 6:39 p.m.2 views

GHSA-X697-JF34-GP5X

creationtimestamp| type| source ---|---|--- 2025-11-21 18:39:05+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115589142587853429 2025-11-22 21:17:53+00:00| seen| https://infosec.exchange/users/obivan/statuses/115595429345717232 2025-11-22 21:18:34+00:00| seen|...

5.8AI score
Exploits0References3
Chainguard
Chainguardadded 2025/11/21 1:27 p.m.3 views

GHSA-7HHV-H469-WC4Q vulnerabilities

Vulnerabilities for packages: gitlab-workhorse-ce, gitlab-rails-ce-fips, gitlab-workhorse-ce-fips, gitlab-runner-fips, gitlab-runner, gitlab-rails-ce...

5.8AI score
Exploits0
Circl
Circladded 2025/11/21 12:50 p.m.2 views

GHSA-GGXQ-HP9W-J794

creationtimestamp| type| source ---|---|--- 2025-11-21 12:50:48+00:00| seen| https://bsky.app/profile/azu.bsky.social/post/3m65d3nacyr2q...

5.8AI score
Exploits0References1
EUVD
EUVDadded 2025/11/21 12:30 a.m.4 views

EUVD-2025-198368

Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to bypass a security feature over a network...

5.7CVSS6.4AI score0.00486EPSS
Exploits0References2
NVD
NVDadded 2025/11/20 11:15 p.m.5 views

CVE-2025-64660

Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to execute code over a network...

8CVSS0.00486EPSS
Exploits0References1
OSV
OSVadded 2025/11/20 11:15 p.m.9 views

CVE-2025-64660

Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to execute code over a network...

8CVSS7.2AI score0.00486EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/11/20 10:18 p.m.36 views

CVE-2025-64660 GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability

...

8CVSS0.00486EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/11/20 10:18 p.m.2 views

CVE-2025-64660 GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability

...

8CVSS6.6AI score0.00486EPSS
Exploits0References1
Snyk
Snykadded 2025/11/20 9:28 p.m.5 views

Command Injection

Overview @anthropic-ai/claude-code is an Use Claude, Anthropic's AI assistant, right from your terminal. Claude can understand your codebase, edit files, run terminal commands, and handle entire workflows for you. Affected versions of this package are vulnerable to Command Injection due to improp...

8.8CVSS7.5AI score0.00394EPSS
Exploits0References2
The Hacker News
The Hacker Newsadded 2025/11/20 5:24 p.m.5 views

ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet

Oligo Security has warned of ongoing attacks exploiting a two-year-old security flaw in the Ray open-source artificial intelligence AI framework to turn infected clusters with NVIDIA GPUs into a self-replicating cryptocurrency mining botnet. The activity, codenamed ShadowRay 2.0 , is an evolution...

9.8CVSS8.3AI score0.81512EPSS
Exploits6
Circl
Circladded 2025/11/20 11:50 a.m.3 views

CVE-2019-19823

creationtimestamp| type| source ---|---|--- 2025-11-20 11:50:03+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2019/CVE-2019-19823.yaml 2025-11-21 21:02:49+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3m666lbfleu2w...

7.5CVSS7.3AI score0.06411EPSS
Exploits3References2
Circl
Circladded 2025/11/20 11:49 a.m.6 views

CVE-2018-13317

creationtimestamp| type| source ---|---|--- 2025-11-20 11:49:55+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2018/CVE-2018-13317.yaml 2025-11-21 21:02:46+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3m666lbabq42b...

6.1CVSS6AI score0.00991EPSS
Exploits1References2
Microsoft CVE
Microsoft CVEadded 2025/11/20 8:0 a.m.86 views

GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability

Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to execute code over a network...

8CVSS7.4AI score0.00486EPSS
Exploits0
Rows per page
Query Builder