9282 matches found
Malicious code in @zalastax/nolb-dsr-pack (npm)
The package @zalastax/nolb-dsr-pack was found to contain malicious code...
Malicious code in csp-presets-pack (npm)
The package csp-presets-pack was found to contain malicious code...
Malicious code in private-pack-2 (npm)
The package private-pack-2 was found to contain malicious code...
MAL-2025-11212 Malicious code in @zalastax/nolb-dsr-pack (npm)
The package @zalastax/nolb-dsr-pack was found to contain malicious code...
MAL-2025-29492 Malicious code in poltergeist-ha-relay-pack (npm)
The package poltergeist-ha-relay-pack was found to contain malicious code...
Malicious code in poltergeist-ha-relay-pack (npm)
The package poltergeist-ha-relay-pack was found to contain malicious code...
Malicious code in ipfs-pack (npm)
The package ipfs-pack was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-23339 Malicious code in ipfs-pack (npm)
The package ipfs-pack was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
Malicious code in wjb313-regret-pack (npm)
The package wjb313-regret-pack was found to contain malicious code...
Malicious code in metadata-ipfs-pack (npm)
The package metadata-ipfs-pack was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-29664 Malicious code in private-pack-1 (npm)
The package private-pack-1 was found to contain malicious code...
MAL-2025-20240 Malicious code in fast-pack-app-components (npm)
The package fast-pack-app-components was found to contain malicious code...
Malicious code in fast-pack-app-components (npm)
The package fast-pack-app-components was found to contain malicious code...
MAL-2025-26229 Malicious code in metadata-ipfs-pack (npm)
The package metadata-ipfs-pack was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
Security Bulletin: IBM WebSphere Application Server could provide weaker than expected security (CVE-2025-33142)
Summary IBM WebSphere Application Server could provide weaker than expected security for TLS connections. Vulnerability Details CVEID:CVE-2025-33142 DESCRIPTION: IBM WebSphere Application Server could provide weaker than expected security for TLS connections. CWE:CWE-295: Improper Certificate...
Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.62 SP1 security update
Red Hat JBoss Core Services Apache HTTP Server 2.4.62 Service Pack 1 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
VulnCheck KEV: CVE-2020-7136
A security vulnerability in HPE Smart Update Manager SUM prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vulnerability in HPE Smart Update Manager SUM prior to 8.5.6. Please visit the HPE Support Center at...
Security Bulletin: IBM WebSphere Application Server Liberty is affected by a denial of service (CVE-2025-36047)
Summary IBM WebSphere Application Server Liberty is affected by a denial of service with the servlet-3.1, servlet-4.0, servlet-5.0, or servlet-6.0 feature with the HTTP/2 protocol enabled. Vulnerability Details CVEID:CVE-2025-36047 DESCRIPTION: IBM WebSphere Application Server Liberty is vulnerab...
CVE-2025-55165 Autocaliweb Exposure of Sensitive Information to an Unauthorized Actor in `config_sql.py`
Autocaliweb is a web app that offers an interface for browsing, reading, and downloading eBooks using a valid Calibre database. Prior to version 0.8.3, the debug pack generated by Autocaliweb can expose sensitive configuration data, including API keys. This occurs because the todict method, used ...
CVE-2025-55165 Autocaliweb Exposure of Sensitive Information to an Unauthorized Actor in `config_sql.py`
Autocaliweb is a web app that offers an interface for browsing, reading, and downloading eBooks using a valid Calibre database. Prior to version 0.8.3, the debug pack generated by Autocaliweb can expose sensitive configuration data, including API keys. This occurs because the todict method, used ...