580 matches found
Malicious Package
Overview apollo-landing is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-3038 Malicious code in apollo-landing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47cb6abcb11f6d62fb52ef331d93bf4c2d5faacb9a4f91386aa6fb06e03b7bef The package apollo-landing was found to contain malicious code. Source: ghsa-malware ed937449ad5ded3d0430063ec8da96faa5c685d89f612418710856e92d1b6438...
Malicious code in apollo-landing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47cb6abcb11f6d62fb52ef331d93bf4c2d5faacb9a4f91386aa6fb06e03b7bef The package apollo-landing was found to contain malicious code. Source: ghsa-malware ed937449ad5ded3d0430063ec8da96faa5c685d89f612418710856e92d1b6438...
Malicious code in onewin-landing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38fa6b80b5e487a83f8ed1eccfcc9d4bbb5d460deb678e1106aea26439c11f24 The package onewin-landing was found to contain malicious code. Source: ghsa-malware af836df2faf0017725ed9fdbcd5457bfca0045b6a8d9cbad8e1ca949f4f06938...
MAL-2026-2652 Malicious code in onewin-landing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38fa6b80b5e487a83f8ed1eccfcc9d4bbb5d460deb678e1106aea26439c11f24 The package onewin-landing was found to contain malicious code. Source: ghsa-malware af836df2faf0017725ed9fdbcd5457bfca0045b6a8d9cbad8e1ca949f4f06938...
MAL-2026-2661 Malicious code in vip-landing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1a30b342d6480583e23a375439f7332f03167d039b9b5471fa038d2374438fc The package vip-landing was found to contain malicious code. Source: ghsa-malware 63f1dbbecde9c755138a598580ab543e38ddcd44460ce05ec9532e8475bfc2a2 An...
Malicious Package
Overview onewin-landing is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in vip-landing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1a30b342d6480583e23a375439f7332f03167d039b9b5471fa038d2374438fc The package vip-landing was found to contain malicious code. Source: ghsa-malware 63f1dbbecde9c755138a598580ab543e38ddcd44460ce05ec9532e8475bfc2a2 An...
Malicious Package
Overview vip-landing is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...
CVE-2026-32381
Missing Authorization vulnerability in raratheme App Landing Page app-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects App Landing Page: from n/a through = 1.2.2...
CVE-2026-32338
Missing Authorization vulnerability in raratheme Construction Landing Page construction-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Construction Landing Page: from n/a through = 1.4.1...
CVE-2026-32378
Missing Authorization vulnerability in raratheme Book Landing Page book-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Book Landing Page: from n/a through = 1.2.7...
CVE-2026-32487
Missing Authorization vulnerability in raratheme Lawyer Landing Page lawyer-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Lawyer Landing Page: from n/a through = 1.2.7...
WordPress plugin Punnel – Landing Page Builder 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...
ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers
Three different ClickFix campaigns have been found to act as a delivery vector for the deployment of a macOS information stealer called MacSync. "Unlike traditional exploit-based attacks, this method relies entirely on user interaction – usually in the form of copying and executing commands –...
EUVD-2026-12027
Missing Authorization vulnerability in raratheme Lawyer Landing Page lawyer-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Lawyer Landing Page: from n/a through = 1.2.7...
EUVD-2026-11880
Missing Authorization vulnerability in raratheme Book Landing Page book-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Book Landing Page: from n/a through = 1.2.7...
EUVD-2026-11884
Missing Authorization vulnerability in raratheme App Landing Page app-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects App Landing Page: from n/a through = 1.2.2...
EUVD-2026-11818
Missing Authorization vulnerability in raratheme Construction Landing Page construction-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Construction Landing Page: from n/a through = 1.4.1...
CVE-2026-32487
Missing Authorization vulnerability in raratheme Lawyer Landing Page lawyer-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Lawyer Landing Page: from n/a through = 1.2.7...