2874 matches found
Malicious code in lib-automotive-call-cdm (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-1042 Malicious code in lib-automotive-call-cdm (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in private-lib-bug-bounty2.0 (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-788 Malicious code in @wfps/wfps-common-lib (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2025-25066
nDPI through 4.12 has a potential stack-based buffer overflow in ndpiaddresscacherestore in lib/ndpicache.c...
CVE-2025-25066
nDPI through 4.12 has a potential stack-based buffer overflow in ndpiaddresscacherestore in lib/ndpicache.c...
Malicious code in cc-component-lib (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-640 Malicious code in cc-component-lib (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
PT-2025-5580 · Apache · Apache Solr
Name of the Vulnerable Software and Affected Versions: Apache Solr versions up through 9.7 Description: The issue allows users to replace "trusted" configset files with arbitrary configuration. Solr instances using the "FileSystemConfigSetService" component and running without authentication and...
Malicious code in lib-wallet (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2fe973aa7a191c3af7d728aa84fd8833989b5b4fa4cbb18ffff5595f890fa540 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-201 Malicious code in lib-wallet (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2fe973aa7a191c3af7d728aa84fd8833989b5b4fa4cbb18ffff5595f890fa540 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
@aligent/cdk-esbuild (=2.1.0), @aligent/cdk-graphql-mesh-server (>=2.2.0 <=2.17.0) +242 more potentially affected by CVE-2025-23206 via aws-cdk-lib (>=2.0.0-alpha.4 <=2.176.0)
aws-cdk-lib NPM version =2.0.0-alpha.4, =2.2.0, =2.3.7, =2.1.0, =2.1.0, =2.0.0-beta, =5.0.31-acdk-upgrade-2-129.0, =2.16.0-acdk-upgrade-2-129.0, =5.0.31-acdk-upgrade-2-129.0, =3.7.10-acdk-upgrade-2-129.0, =3.1.19-acdk-upgrade-2-129.0, =5.7.5-acdk-upgrade-2-129.0, =3.5.10-acdk-upgrade-2-129.0,...
GHSA-GRHH-R4JJ-8JH7 tecnickcom/tc-lib-pdf-font mishandles fonts
An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed...
tecnickcom/tc-lib-pdf-font mishandles fonts
An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed...
CVE-2024-56520
An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed...
CVE-2024-56520
An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed...
UBUNTU-CVE-2024-56520
An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed...
PT-2024-36829 · Tcpdf +2 · Tcpdf +2
Name of the Vulnerable Software and Affected Versions: tc-lib-pdf-font versions prior to 2.6.4 TCPDF versions prior to 6.8.0 Description: The issue is related to the mishandling of fonts, specifically the misparsing of FontBBox for Type 1 and TrueType fonts. This problem affects the management of...
tc-lib-pdf-font 安全漏洞
tc-lib-pdf-font is a Tecnick open source PHP library containing PDF font methods and utilities. A security vulnerability exists in versions prior to tc-lib-pdf-font 2.6.4 that stems from improper font handling...
CVE-2024-56520
An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed...