Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-46274

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00041EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-33533

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00366EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 1:57 a.m.2 views

CVE-2023-47123

iTop is an IT service management platform. By filling malicious code in an object friendlyname / complementary name, an XSS attack can be performed when this object will displayed as an n:n relation item in another object. This vulnerability is fixed in 3.1.1 and 3.2.0...

8.7CVSS6.2AI score0.00723EPSS
Exploits0References1
OSV
OSVadded 2025/04/02 6:53 a.m.2 views

MAL-2025-3034 Malicious code in @hongfangze/calc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 62ce8da37d7e1e8677cceb4a5db36f031470df22a7996162be8d54154076796a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
CISA KEV Catalog
CISA KEV Catalogadded 2025/03/18 12:0 a.m.34 views

tj-actions/changed-files GitHub Action Embedded Malicious Code Vulnerability

tj-actions/changed-files GitHub Action contains an embedded malicious code vulnerability that allows a remote attacker to discover secrets by reading Github Actions Workflow Logs. These secrets may include, but are not limited to, valid AWS access keys, GitHub personal access tokens PATs, npm...

8.6CVSS8.6AI score0.9183EPSS
In wildExploits2
Debian CVE
Debian CVEadded 2024/10/21 11:53 a.m.7 views

CVE-2024-47712

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix potential RCU dereference issue in wilcparsejoinbssparam In the wilcparsejoinbssparam function, the TSF field of the ies structure is accessed after the RCU read-side critical section is unlocked. According to...

5.5CVSS5.8AI score0.00021EPSS
Exploits0
CISA
CISAadded 2024/05/29 12:0 p.m.13 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-4978 Justice AV Solutions JAVS Viewer Installer Embedded Malicious Code Vulnerability These types of vulnerabilities are frequent attack vectors for malicious...

8.7CVSS7.2AI score0.12815EPSS
In wildExploits1References6
CISA KEV Catalog
CISA KEV Catalogadded 2024/05/29 12:0 a.m.44 views

Justice AV Solutions (JAVS) Viewer Installer Embedded Malicious Code Vulnerability

Justice AV Solutions JAVS Viewer installer contains a malicious version of ffmpeg.exe, named fffmpeg.exe SHA256: 421a4ad2615941b177b6ec4ab5e239c14e62af2ab07c6df1741e2a62223223c4. When run, this creates a backdoor connection to a malicious C2 server...

8.7CVSS7.1AI score0.12815EPSS
In wildExploits1
Rows per page
Query Builder