MAL-2025-20534 Malicious code in file-alb-um-zip-new-mp3-345273-dancing-with-the-devil-the-art-of-starting-over-ox6x8-trglkl (npm)

The package file-alb-um-zip-new-mp3-345273-dancing-with-the-devil-the-art-of-starting-over-ox6x8-trglkl was found to contain malicious code...

SUSE CVE-2011-2645

Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to execute arbitrary code via a crafted filename for a custom RPM...

CVE-2017-8915

sinopia, as used in SAP HANA XS 1.00 and 2.00, allows remote attackers to cause a denial of service assertion failure and service crash by pushing a package with a filename containing a $ dollar sign or % percent character, aka SAP Security Note 2407694...

Apple Mac OS X Installer Package Filename Format String (CVE-2007-0465)

Apple Computer Mac OS X is the operating system shipped with Apple Macintosh computers. The Installer component is an application included in Mac OS X systems which extracts and installs applications from installation packages. The installer provides features which allow developers to customize...

CVE-2007-0465

Format string vulnerability in Apple Installer 2.1.5 on Mac OS X 10.4.8 allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a 1 PKG, 2 DISTZ, or 3 MPKG package filename...