103 matches found
Astra Linux - уязвимость в edk2
EDK2’s Network Package is vulnerable to a out-of-bounds read vulnerability when processing the IANA or IATA option in a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of confidentiality...
CVE-2026-31738
In the Linux kernel, the following vulnerability has been resolved: vxlan: validate ND option lengths in vxlannacreate vxlannacreate walks ND options according to option-provided lengths. A malformed option can make the parser advance beyond the computed option span or use a too-short source LLAD...
CVE-2026-1198
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window. Lack of input validation allows an authenticated attacker to prepare a malicious query to the database that will be executed. This issue was fixed in [email protected]...
EUVD-2026-8848
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window. Lack of input validation allows an authenticated attacker to prepare a malicious query to the database that will be executed. This issue was fixed in [email protected]...
CVE-2026-1198
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window. Lack of input validation allows an authenticated attacker to prepare a malicious query to the database that will be executed. This issue was fixed in [email protected]...
CVE-2026-1198
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window. Lack of input validation allows an authenticated attacker to prepare a malicious query to the database that will be executed. This issue was fixed in [email protected]...
CVE-2026-1198 SQL Injection in SIMPLE.ERP
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window. Lack of input validation allows an authenticated attacker to prepare a malicious query to the database that will be executed. This issue was fixed in [email protected]...
CVE-2026-1198
SIMPLE.ERP is affected by a SQL Injection in the search feature in the "Obroty na kontach" window. The issue arises from insufficient input validation, allowing an authenticated attacker to craft a query that could be executed by the database. The CVE entry notes a high impact (CVSS v4.0 base sco...
PT-2026-22138
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window. Lack of input validation allows an authenticated attacker to prepare a malicious query to the database that will be executed. This issue was fixed in [email protected] u06...
EUVD-2025-141408
Malicious code in hunimi-satihu-na npm...
EUVD-2025-141789
Malicious code in goodan-ngasa-na npm...
EUVD-2025-139475
Malicious code in nuilva-dakdre-na npm...
MAL-2025-174506 Malicious code in goodan-ngasa-na (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31ebfe7bbe4bc80b10be1af5c325f416efdd7043f5538c249977b217ea0970b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-144573
Malicious code in augis-pom9r-na npm...
Malicious code in na-suck-vibni (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd71b0c92a64c87ffb47dac0dd7ef1300e9a4bd457725536cd386e9c23a9e73c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-147789
Malicious code in tehah-na-buta npm...
EUVD-2019-3247
Malware in sbrugna...
EUVD-2018-9308
Malware in sbrugna...
Malicious Package
Overview zarabotok-na-obmenakh-bitkoinakh-d7rqlq46s is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that...
Malicious code in zarabotok-na-kriptovaliute-dlia-nachinaiushchikh-forum-5vff29khr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware aedf613f47b3557e94c05e4616c8964f6d4cd5fa415f68cf8695fe4bb8f999bf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...