Malicious code in nemo-jaws (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ac1bc6492690bd59f6e2ace3fd6aaf7512476fdcfd2e015423e1a20529bb8b2 The package nemo-jaws was found to contain malicious code...

MAL-2026-2785 Malicious code in nemo-jaws (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ac1bc6492690bd59f6e2ace3fd6aaf7512476fdcfd2e015423e1a20529bb8b2 The package nemo-jaws was found to contain malicious code...

CVE-2019-25333

Bullwark Momentum Series JAWS 1.0 contains a directory traversal vulnerability that allows unauthenticated attackers to access system files by manipulating HTTP request paths. Attackers can exploit the vulnerability by sending crafted GET requests with multiple '../' sequences to read sensitive...

CVE-2019-25333

CVE-2019-25333 affects Bullwark Momentum Series JAWS 1.0. The issue is a directory traversal vulnerability where unauthenticated attackers can read sensitive files by manipulating HTTP request paths with multiple “../” sequences, potentially reading files such as “/etc/passwd” outside the web roo...

CVE-2019-25333 Bullwark Momentum Series JAWS 1.0 - 'Momentum Series JAWS' Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Bullwark Momentum Series JAWS 1.0 contains a directory traversal vulnerability that allows unauthenticated attackers to access system files by manipulating HTTP request paths. Attackers can exploit the vulnerability by sending crafted GET requests with multiple '../' sequences to read sensitive...

PT-2026-7932

Bullwark Momentum Series JAWS 1.0 contains a directory traversal vulnerability that allows unauthenticated attackers to access system files by manipulating HTTP request paths. Attackers can exploit the vulnerability by sending crafted GET requests with multiple '../' sequences to read sensitive...

EUVD-2020-23320

Malware in sbrugna...

EUVD-2020-23319

Malware in sbrugna...

EUVD-2005-1802

Malware in sbrugna...

EUVD-2004-2435

Malware in sbrugna...

EUVD-2005-2180

Malware in sbrugna...

EUVD-2004-2059

Malware in sbrugna...

EUVD-2009-0648

Malware in sbrugna...

EUVD-2006-3289

Malware in sbrugna...

EUVD-2005-1234

Malware in sbrugna...

EUVD-2004-2436

Malicious code in bioql PyPI...

Breaking the Code: Security Assessment of AI Code Agents through Systematic Jailbreaking Attacks

Code-capable large language model LLM agents are increasingly embedded into software engineering workflows where they can read, write, and execute code, raising the stakes of safety-bypass "jailbreak" attacks beyond text-only settings. Prior evaluations emphasize refusal or harmful-text detection...

MAL-2025-18422 Malicious code in dh-jaws-client (npm)

The package dh-jaws-client was found to contain malicious code...

Malicious code in dh-jaws-client (npm)

The package dh-jaws-client was found to contain malicious code...

A message from Bruce the mechanical shark

Welcome to this week's edition of the Threat Source newsletter. Hi, I'm Bruce, the 25-foot mechanical star of "Jaws." This summer marks 50 years since my 4 minutes of screentime kept people out of the water for decades. Maybe this Fourth of July weekend you're planning to sea-shanty your way to a...