Lucene search
K

723 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-5240

Malware in sbrugna...

6.8CVSS6.2AI score0.0227EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-38203

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01539EPSS
Exploits1References6
OSV
OSV
added 2025/09/09 4:31 p.m.5 views

MAL-2025-47111 Malicious code in @corp-ais/mychannel-shared-libs (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c5f0e8cfbe80a4f93fca6e505e8d783eb28bae0448cb594f0affede6c773532f Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References1
CNVD
CNVD
added 2025/09/08 12:0 a.m.4 views

appRain CMF cross-site scripting vulnerability (CNVD-2025-21115)

appRain CMF is a content management framework. A cross-site scripting vulnerability exists in appRain CMF due to improper validation of user input in the /apprain/developer/addons/update/baselibs endpoint. An attacker could use this vulnerability to steal the victim's cookie-based authentication...

5.4CVSS6.3AI score0.00162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/06 11:25 a.m.9 views

CVE-2025-41050

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'dataAddonlayouts' and 'dataAddonlayoutsexcept' parameters in /apprain/developer/addons/update/baselibs...

5.4CVSS6.1AI score0.00162EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/04 11:12 a.m.7 views

CVE-2025-41050 Stored Cross-Site Scripting vulnerability in appRain CMF

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'dataAddonlayouts' and 'dataAddonlayoutsexcept' parameters in /apprain/developer/addons/update/baselibs...

5.1CVSS0.00162EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/04 12:0 a.m.3 views

appRain CMF 跨站脚本漏洞

appRain CMF is a content management framework. A cross-site scripting vulnerability exists in appRain CMF due to improper validation of user input in the /apprain/developer/addons/update/baselibs endpoint. An attacker could use this vulnerability to steal the victim's cookie-based authentication...

5.4CVSS6.2AI score0.00162EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2025/08/20 10:48 p.m.4 views

org.webjars.npm:crypto-browserify (>=3.2.6 <=3.2.8), org.webjars.npm:node-libs-browser (>=0.5.2 <=0.5.3) +1 more potentially affected by CVE-2025-9288 via org.webjars.npm:sha.js (>=2.2.6 <=2.3.6)

org.webjars.npm:sha.js MAVEN version =2.2.6, =3.2.6, =0.5.2, =0.5.3 - org.webjars.npm:shasum =1.0.1 Source cves: CVE-2025-9288 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-12089401...

9.1CVSS7.2AI score0.00651EPSS
Exploits2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in dds-ddw_spa_libs_primeng (npm)

The package dds-ddwspalibsprimeng was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in @solanas-libs/check-balance (npm)

The package @solanas-libs/check-balance was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in @zalastax/nolb-lion-libs (npm)

The package @zalastax/nolb-lion-libs was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in linux-libs (npm)

The package linux-libs was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-12219 Malicious code in @zalastax/nolb-lion-libs (npm)

The package @zalastax/nolb-lion-libs was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-9331 Malicious code in @solanas-libs/check-balance (npm)

The package @solanas-libs/check-balance was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-25413 Malicious code in linux-libs (npm)

The package linux-libs was found to contain malicious code...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/06 2:50 p.m.4 views

Malicious code in lynx-libs-mono (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7dcde725ba12b559bfd1e62b8d6058ced4b0a5ed11b9f168f8f6f576b42ef801 The OpenSSF Package Analysis project identified 'lynx-libs-mono' @ 1.0.10 npm as malicious. It is considered malicious because: - The package...

6.9AI score
Exploits0
OSV
OSV
added 2025/08/06 2:50 p.m.2 views

MAL-2025-6796 Malicious code in lynx-libs-mono (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7dcde725ba12b559bfd1e62b8d6058ced4b0a5ed11b9f168f8f6f576b42ef801 The OpenSSF Package Analysis project identified 'lynx-libs-mono' @ 1.0.10 npm as malicious. It is considered malicious because: - The package...

7.1AI score
Exploits0
UbuntuCve
UbuntuCve
added 2025/07/16 2:15 p.m.14 views

CVE-2025-40776

A named caching resolver that is configured to send ECS EDNS Client Subnet options may be vulnerable to a cache-poisoning attack. This issue affects BIND 9 versions 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.37-S1, and 9.20.9-S1 through 9.20.10-S1...

8.6CVSS7.2AI score0.00197EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/07/16 12:0 a.m.10 views

Oracle OpenJDK 8.x - 11.x Vulnerability (Jul 2025)

Oracle OpenJDK is prone to a vulnerability in the core-libs/javax.script component. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.9CVSS7AI score0.00551EPSS
Exploits0References3
Fedora
Fedora
added 2025/06/14 1:10 a.m.7 views

[SECURITY] Fedora 42 Update: python3.11-3.11.13-1.fc42

Python 3.11 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.11 package provides the "python3.11" executable:...

7.4AI score
Exploits0
Rows per page
Query Builder