Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

90 matches found

Veracode
Veracodeadded 2025/12/13 4:36 a.m.5 views

CRLF Injection

org.apache.heron, heron-api is vulnerable to CRLF Injection. The vulnerability is due to improper escaping of log input in log statements, which allows an attacker to inject malicious CRLF characters and manipulate log entries...

9.8CVSS7.3AI score0.01458EPSS
Exploits0References3Affected Software1
EUVD
EUVDadded 2025/11/12 3:4 a.m.2 views

EUVD-2025-117520

Malicious code in adverse-amethyst-heron npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/12 3:4 a.m.2 views

EUVD-2025-117455

Malicious code in dead-beige-heron npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/12 3:4 a.m.2 views

EUVD-2025-117388

Malicious code in fantastic-copper-heron npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/12 3:4 a.m.2 views

EUVD-2025-117300

Malicious code in injured-tomato-heron npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/11 8:46 p.m.2 views

EUVD-2025-102990

Malicious code in primaryheronz3n npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/11 8:46 p.m.4 views

EUVD-2025-103100

Malicious code in patientheronz3n npm...

6.6AI score
Exploits0
OSV
OSVadded 2025/11/11 8:46 p.m.2 views

MAL-2025-129667 Malicious code in querulous_heron_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82839b30463af2c8508b89ddc99a336acb50933136760c9b696a373cab2f88ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVDadded 2025/11/11 8:11 p.m.2 views

EUVD-2025-105697

Malicious code in dutchheronz3n npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/11 8:11 p.m.2 views

EUVD-2025-106561

Malicious code in architecturalheronz3n npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/11 3:19 p.m.1 views

EUVD-2025-90320

Malicious code in longheronz3n npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 7:26 a.m.3 views

Malicious code in agreeable_heron_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cdca95017de572b97689b1f25237b2964c812a007cde1515521ca7175df5bbe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVDadded 2025/11/11 7:26 a.m.2 views

EUVD-2025-80298

Malicious code in thirstyheronreplicateautomation npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/11 7:16 a.m.2 views

EUVD-2025-70558

Malicious code in ethnicheronz3n npm...

6.6AI score
Exploits0
OSV
OSVadded 2025/11/11 7:16 a.m.2 views

MAL-2025-100701 Malicious code in combined_heron_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a52e4ce2ee1ef885651335735768e6f4f2a24a458487d51317c91f71111b4de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVDadded 2025/11/11 5:18 a.m.2 views

EUVD-2025-73895

Malicious code in rollingheronz3n npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/11 5:18 a.m.2 views

EUVD-2025-73015

Malicious code in vitreousheronz3n npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/11 5:18 a.m.2 views

EUVD-2025-62665

Malicious code in philosophicalheronz3n npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/11 5:18 a.m.2 views

EUVD-2025-62853

Malicious code in nuttyheronrequirement npm...

6.6AI score
Exploits0
OSV
OSVadded 2025/11/11 4:25 a.m.2 views

MAL-2025-86090 Malicious code in gothic_heron_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 620e8ea826c48f593fb595e26eb81ff5cc042fd8c59b701e50095d0a9ac55323 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Rows per page
Query Builder