freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. In affected versions the URBDRC client does not perform bounds checking on server‑supplied MSUSBINTERFACEDESCRIPTOR values and uses them as indices in libusbudevcompletemsconfigsetup, causing an out‑of‑bounds read...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

EUVD-2025-198654

Malicious code in react-library-setup npm...

Malicious code in react-library-setup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd7f28e9ee69ccd4dc343423efa26fbdc798388c2d4abdb85588cc5a532dd2c3 The package react-library-setup was found to contain malicious code. Source: ghsa-malware...

MAL-2025-190700 Malicious code in react-library-setup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd7f28e9ee69ccd4dc343423efa26fbdc798388c2d4abdb85588cc5a532dd2c3 The package react-library-setup was found to contain malicious code. Source: ghsa-malware...

Sql injection

Eval injection vulnerability in library/setup/rpc.php in Gravity Getting Things Done GTD 0.4.5 and earlier allows remote attackers to execute arbitrary PHP code via the objectname parameter...