Lucene search
+L

8 matches found

NVD
NVD
added 2025/08/27 5:15 p.m.6 views

CVE-2025-20348

A vulnerability in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller NDFC could allow an authenticated, low-privileged, remote attacker to view sensitive information or upload and modify files on an affected device. This vulnerability exists because of...

5CVSS0.00273EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/09/03 5:44 p.m.16 views

Malicious Package in qingting

All versions of qingting contain malicious code. The package uploads system information to a remote server, downloads a file and executes it. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer...

3.3AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2020/09/03 5:41 p.m.18 views

Malicious Package in midway-xtpl

All versions of midway-xtpl contain malicious code. The package uploads system information to a remote server, downloads a file and executes it. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that...

3.6AI score
Exploits0References2Affected Software1
OSV
OSV
added 2020/09/03 5:40 p.m.16 views

GHSA-G5Q2-FCG9-J526 Malicious Package in hsf-clients

All versions of hsf-clients contain malicious code. The package uploads system information to a remote server, downloads a file and executes it. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that...

9.8CVSS6.9AI score
Exploits0References1
OSV
OSV
added 2020/09/03 5:30 p.m.7 views

GHSA-8M5V-F2WP-WQR9 Malicious Package in ali-contributors

All versions of ali-contributors contain malicious code. The package uploads system information to a remote server, downloads a file and executes it. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that...

9.8CVSS6.9AI score
Exploits0References1
Node.js
Node.js
added 2019/08/30 7:55 p.m.17 views

Malicious Package

Overview This package contained malicious code. The package uploaded system information such as OS and hostname to a remote server. Recommendation Remove the package from your environment. There are no indications of further compromise. References GitHub Advisory...

6.7AI score
Exploits0Affected Software1
Veracode
Veracode
added 2019/07/15 2:51 a.m.7 views

Malicious Package

ali-contributors is a malicious package. The package uploads system information to a remote server, downloads a file and executes it...

6.5AI score
Exploits0
Veracode
Veracode
added 2019/07/15 2:51 a.m.13 views

Malicious Package

antd-cloud is a malicious package. The package uploads system information to a remote server, downloads a file and executes it...

6.5AI score
Exploits0
Rows per page
Query Builder