Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2019-0549

Malware in sbrugna...

6.5CVSS6.7AI score0.00528EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2017-0261

Malware in sbrugna...

5.3CVSS6.4AI score0.00603EPSS
Exploits0References11
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2016-3300

Malware in sbrugna...

7.5CVSS8.5AI score0.01835EPSS
Exploits0References12
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-0286

Malware in sbrugna...

6.1CVSS6.5AI score0.00482EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-0262

Malware in sbrugna...

5CVSS7.3AI score0.0069EPSS
Exploits0References15
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2016-3191

Malware in sbrugna...

7.5CVSS8.5AI score0.00482EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-6663

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00272EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-0968

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.01099EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2025/07/18 11:15 p.m.3 views

CVE-2025-27209

The V8 release used in Node.js v24.0.0 has changed how string hashes are computed using rapidhash. This implementation re-introduces the HashDoS vulnerability as an attacker who can control the strings to be hashed can generate many hash collisions - an attacker can generate collisions even witho...

7.5CVSS7.2AI score0.00148EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 4:8 a.m.5 views

CVE-2023-38504

Sails is a realtime MVC Framework for Node.js. In Sails apps prior to version 1.5.7,, an attacker can send a virtual request that will cause the node process to crash. This behavior was fixed in Sails v1.5.7. As a workaround, disable the sockets hook and remove the sails.io.js client...

7.5CVSS6.7AI score0.003EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 10:44 p.m.3 views

CVE-2022-29080

The npm-dependency-versions package through 0.3.0 for Node.js allows command injection if an attacker is able to call dependencyVersions with a JSON object in which pkgs is a key, and there are shell metacharacters in a value...

9.8CVSS7.3AI score0.02264EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:5 p.m.3 views

CVE-2022-39266

isolated-vm is a library for nodejs which gives the user access to v8's Isolate interface. In versions 4.3.6 and prior, if the untrusted v8 cached data is passed to the API through CachedDataOptions, attackers can bypass the sandbox and run arbitrary code in the nodejs process. Version 4.3.7...

9.8CVSS7.4AI score0.00272EPSS
Exploits0References1
OSV
OSVadded 2024/12/16 1:55 p.m.9 views

BIT-NODE-MIN-2024-21892

On Linux, Node.js ignores certain environment variables if those may have been set by an unprivileged user while the process is running with elevated privileges with the only exception of CAPNETBINDSERVICE. Due to a bug in the implementation of this exception, Node.js incorrectly applies this...

7.8CVSS7.5AI score0.00448EPSS
Exploits0References10
UbuntuCve
UbuntuCveadded 2023/02/23 8:15 p.m.21 views

CVE-2023-23920

An untrusted search path vulnerability exists in Node.js. 19.6.1, 18.14.1, 16.19.1, and 14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges...

4.2CVSS6.8AI score0.00082EPSS
Exploits0References5
Rows per page
Query Builder