85 matches found
MAL-2026-5165 Malicious code in @emcd-vue/loans (npm)
Part of a coordinated multi-package supply-chain attack impersonating EMCD emcd.io, a legitimate Russian cryptocurrency exchange and mining pool. The attacker registered the @emcd-vue npm scope to distribute multiple malicious packages posing as internal tooling. This package was published 90...
Malicious code in @loans/vehicles-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23e2b702fc2de01ebe69a6d2baa4766782db91842f096c04b4b5d019105cd91b @loans/vehicles-api is a dependency-confusion package targeting an internal @loans npm scope claimed homepage docs.loans.io, README directs users to ...
MAL-2026-4432 Malicious code in @sec-loans-ui/utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da55a9be9d9f90abe00e16200ea17aa78f58643e40d872d04276453dfd8a88f9 Package is a hollow lure: index.js is a 35-byte stub module.exports = , description and author are empty, and the version is bumped to 99.9.1 — the...
SourceCodester Loan Management System 安全漏洞
The SourceCodester Loan Management System is an open-source loan management system developed by SourceCodester. Version 1.0 of the SourceCodester Loan Management System has security vulnerabilities. These vulnerabilities stem from defects in the business logic and improper server-side validation,...
CVE-2026-21665
The Print Service component of Fiserv Originate Loans Peripherals formerly Velocity Services in unsupported version 2021.2.4 build 4.7.3155.0011 uses deprecated .NET Remoting TCP channels that allow unsafe deserialization of untrusted data. When these services are exposed to an untrusted network ...
CVE-2026-21665
The Print Service component of Fiserv Originate Loans Peripherals formerly Velocity Services in unsupported version 2021.2.4 build 4.7.3155.0011 uses deprecated .NET Remoting TCP channels that allow unsafe deserialization of untrusted data. When these services are exposed to an untrusted network ...
CVE-2026-21665
The Print Service component of Fiserv Originate Loans Peripherals formerly Velocity Services in unsupported version 2021.2.4 build 4.7.3155.0011 uses deprecated .NET Remoting TCP channels that allow unsafe deserialization of untrusted data. When these services are exposed to an untrusted network ...
CVE-2026-21665
The CVE concerns the Print Service component of Fiserv Originate Loans Peripherals (formerly Velocity Services) in the unsupported 2021.2.4 release (build 4.7.3155.0011). It uses deprecated .NET Remoting TCP channels that enable unsafe deserialization of untrusted data. When exposed to an untrust...
PT-2026-21572
Name of the Vulnerable Software and Affected Versions Fiserv Originate Loans Peripherals version 2021.2.4 build 4.7.3155.0011 Description The Print Service component of Fiserv Originate Loans Peripherals utilizes deprecated .NET Remoting TCP channels that permit unsafe deserialization of untruste...
Fiserv Originate Loans Peripherals Print Service 安全漏洞
Fiserv Originate Loans Peripherals Print Service is a middleware developed by the British company Fiserv, which connects cloud-based loan systems with local physical hardware. Version 2021.2.4 of Fiserv Originate Loans Peripherals Print Service contains a security vulnerability. This vulnerabilit...
Malicious Package
Overview cooler-loans-api-generate is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
MAL-2025-48600 Malicious code in cooler-loans-api-generate (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 14591c09547262270253b5ec14b726249679f72985f6e450ba0cf5198ee216af Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in cooler-loans-api-generate (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 14591c09547262270253b5ec14b726249679f72985f6e450ba0cf5198ee216af Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
EUVD-2025-35840
Malicious code in cooler-loans-api-generate npm...
MAL-2025-48601 Malicious code in cooler-loans-api-get (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4bf5016290eaec4debcd0e35dda5e684927f8e80c05f9ca16252c71ea8cca6de Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in cooler-loans-api-get (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4bf5016290eaec4debcd0e35dda5e684927f8e80c05f9ca16252c71ea8cca6de Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
EUVD-2025-35841
Malicious code in cooler-loans-api-get npm...
EUVD-2014-6643
Malware in sbrugna...
EUVD-2002-1009
Malware in sbrugna...
EUVD-2021-16711
Malware in sbrugna...