59095 matches found
EUVD-2025-59704
Malicious code in fajar-sroto69-sluey npm...
Malicious code in oktafian-gepuk80-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bdbcb845bb5a80065804364342b7ab922887fd527b872c8aba40bd8a1ddbc2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-57196
Malicious code in subjectivecatsharkz3n npm...
EUVD-2025-58878
Malicious code in joni-kue76-sumpek npm...
EUVD-2025-59751
Malicious code in fadhil-pecel44-sluey npm...
EUVD-2025-60001
Malicious code in dutchflyingfishz3n npm...
PT-2025-46364
Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions prior to 145 Thunderbird versions prior to 145 Description The issue is a JIT miscompilation within the JavaScript Engine's JIT component, leading to a potential out-of-bounds write in memory. This could allow a remote...
PT-2025-46575
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 142.0.7444.166 Chromium versions prior to 142.0.7444.162-1deb12u1 Debian bookworm Chromium versions prior to 142.0.7444.162-1deb13u1 Debian trixie Chromium versions prior to 142.0.7444.162-alt0.p11.1 Description...
Google Chrome Misimplementation Vulnerability (CNVD-2026-07246)
Google Chrome is a web browser developed by Google Inc. Google Chrome suffers from an improper implementation vulnerability that stems from an improper implementation in V8. An attacker could exploit this vulnerability by exploiting a heap corruption vulnerability via a carefully constructed HTML...
KLA90004 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Incorrect boundary conditions...
CVE-2025-13024
JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...
Linux Distros Unpatched Vulnerability : CVE-2025-13016
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect boundary conditions in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and...
CVE-2025-13014
Use-after-free in the Audio/Video component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Firefox ESR 115.30, Thunderbird 145, and Thunderbird 140.5...
Mozilla Firefox ESR < 140.5
The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 140.5. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-88 advisory. - Use-after-free in the WebRTC: Audio/Video component. This vulnerability affects Firefox 145 and Firefox...
CVE-2025-13026
Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...
CVE-2025-13027
Memory safety bugs present in Firefox 144 and Thunderbird 144. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 145 and Thunderbird 145...
Mozilla Firefox和Mozilla Firefox ESR 安全漏洞
Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. Mozilla Firefox and Firefox ESR suffer from a buffer overflow vulnerability that stems from an incorrect boundary condition in a JavaScript WebAssembly component, which can be...
CVE-2025-13017
Same-origin policy bypass in the DOM: Notifications component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...
Mozilla Firefox 安全漏洞
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a code execution vulnerability that originates from a compilation error in the JIT component of the JavaScript Engine, which can be exploited by an attacker to execute...
CVE-2025-13022
Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...