37 matches found
MAL-2026-3174 Malicious code in internal-sys-audit-check (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24fa7464d076e1807141a149346864e59a44c3b8e2731c02e05c9d93d0dcf487 The package internal-sys-audit-check was found to contain malicious code. Source: ghsa-malware...
EUVD-2020-29223
Malware in sbrugna...
EUVD-2021-26745
Malware in sbrugna...
EUVD-2019-15725
Malware in sbrugna...
EUVD-2019-9357
Malware in sbrugna...
EUVD-2019-15728
Malware in sbrugna...
EUVD-2024-41310
Malicious code in bioql PyPI...
EUVD-2025-24223
Malicious code in bioql PyPI...
PT-2025-37260
Name of the Vulnerable Software and Affected Versions: Lenovo XClarity Orchestrator LXCO affected versions not specified Description: An attacker with access to a device on the local network segment may be able to manipulate the device to create an alternate communication channel. This could allo...
WordPress Plugin Jetpack Patches Major Vulnerability Affecting 27 Million Sites
The maintainers of the Jetpack WordPress plugin have released a security update to remediate a critical vulnerability that could allow logged-in users to access forms submitted by others on a site. Jetpack, owned by WordPress maker Automattic, is an all-in-one plugin that offers a comprehensive...
CVE-2024-45105
An internal product security audit discovered a UEFI SMM System Management Mode callout vulnerability in some ThinkSystem servers that could allow a local attacker with elevated privileges to execute arbitrary code...
CVE-2024-45105
An internal product security audit discovered a UEFI SMM System Management Mode callout vulnerability in some ThinkSystem servers that could allow a local attacker with elevated privileges to execute arbitrary code...
CVE-2024-45105
An internal product security audit discovered a UEFI SMM System Management Mode callout vulnerability in some ThinkSystem servers that could allow a local attacker with elevated privileges to execute arbitrary code...
CVE-2024-29169
Dell SCG, versions prior to 5.22.00.00, contain a SQL Injection Vulnerability in the SCG UI for an internal audit REST API. A remote authenticated attacker could potentially exploit this vulnerability, leading to the execution of certain SQL commands on the application's backend database causing...
CVE-2024-29169
Dell SCG, versions prior to 5.22.00.00, contain a SQL Injection Vulnerability in the SCG UI for an internal audit REST API. A remote authenticated attacker could potentially exploit this vulnerability, leading to the execution of certain SQL commands on the application's backend database causing...
PT-2024-22776 · Dell · Dell Scg
Name of the Vulnerable Software and Affected Versions: Dell SCG versions prior to 5.22.00.00 Description: The issue concerns a SQL Injection Vulnerability in the SCG UI for an internal audit REST API. A remote authenticated attacker could potentially exploit this vulnerability, leading to the...
Dell Secure Connect Gateway SQL Injection Vulnerability
Dell Secure Connect Gateway is a secure connectivity gateway from Dell, Inc. A SQL injection vulnerability exists in Dell Secure Connect Gateway versions prior to 5.22.00.00, which stems from a SQL injection in the Internal Audit REST API, which could be exploited by a remote attacker to execute...
OPENSUSE-SU-2023:0325-1 Security update for chromium
This update for chromium fixes the following issues: - Chromium 118.0.5993.117 boo1216549 CVE-2023-5472: Use after free in Profiles Various fixes from internal audits, fuzzing and other initiatives...
Grafana -- Stored XSS in TraceView panel
Grafana Labs reports: During an internal audit of Grafana on January 30, a member of the engineering team found a stored XSS vulnerability affecting the TraceView panel. The stored XSS vulnerability was possible because the value of a span’s attributes/resources were not properly sanitized, and...
Top Six Security Bad Habits, and How to Break Them
Cybercrime is on the rise, and attacks are getting faster, more nuanced and increasingly sophisticated. The number of cyberattack-related data breaches rose 27 percent in 2021 — an upward trend that shows no signs of slowing down. Bad security habits, such as using the same password more than onc...