MAL-2026-1202 Malicious code in mvn-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7439c73d7a34dad9485537cc4adefa71514a16e38e08a171c099933110bfa5c The package mvn-runtime was found to contain malicious code. Source: ghsa-malware 3af620cf3afd7a0d522823f8835bdf289b697f5be39cf61e22e7f1f0da6ec7aa An...

Malicious code in mvn-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7439c73d7a34dad9485537cc4adefa71514a16e38e08a171c099933110bfa5c The package mvn-runtime was found to contain malicious code. Source: ghsa-malware 3af620cf3afd7a0d522823f8835bdf289b697f5be39cf61e22e7f1f0da6ec7aa An...

Malicious Package

Overview mvn-runtime is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

Exploit for Out-of-bounds Write in Hutool

json.org CVE-2022-45688 false positive The project contains...

Exploit for Out-of-bounds Write in Hutool

json.org CVE-2022-45688 false positive The project contains...

Exploit for Out-of-bounds Write in Hutool

json.org CVE-2022-45688 true positive The project illustrate...

Spring4Shell-Poc - Spring Core RCE 0-day Vulnerability

Description of the vulnerability: https://www.cyberkendra.com/2022/03/springshell-rce-0-day-vulnerability.html Construction of the POC: https://github.com/BobTheShoplifter/Spring4Shell-POC Steps to Build/Run Tested with JDK 11.0.14, Spring Boot 2.6.5, and Apache Tomcat 9.0.60 Run mvn clean packag...

CVE-2018-11804

Spark's Apache Maven-based build includes a convenience script, 'build/mvn', that downloads and runs a zinc server to speed up compilation. It has been included in release branches since 1.3.x, up to and including master. This server will accept connections from external hosts by default. A...